RE: DECEPTIVE TRADE PRACTICES BY META PLATFORMS, INC.
Violation of FTC Act Section 5 - Unfair or Deceptive Acts or Practices
**COMPLAINT SUBMISSION** For Electronic Filing via: https://reportfraud.ftc.gov/
**Date Filed:** December 29, 2025
**Complainant:** Consumer Privacy Research Group
**Respondent:** Meta Platforms, Inc. 1 Hacker Way Menlo Park, CA 94025
**Subject Application:** Facebook iOS Application v345.0 (Build 333768490)
I. NATURE OF THE COMPLAINT
This complaint documents systematic deceptive trade practices by Meta Platforms, Inc. ("Meta" or "Respondent") in the operation of the Facebook iOS mobile application. Forensic analysis and runtime testing reveal that Meta deliberately circumvents iOS privacy indicators designed to inform users when their microphone and camera are being accessed, while simultaneously representing to consumers that these indicators provide meaningful privacy protections.
This conduct constitutes unfair and deceptive acts or practices in violation of Section 5 of the Federal Trade Commission Act, 15 U.S.C. Section 45.
II. BACKGROUND AND JURISDICTION
A. FTC Jurisdiction
The Federal Trade Commission has jurisdiction over this matter pursuant to Section 5(a) of the FTC Act, which prohibits "unfair or deceptive acts or practices in or affecting commerce." 15 U.S.C. Section 45(a)(1).
Meta Platforms, Inc. is a corporation engaged in interstate commerce through its social media platforms, including the Facebook mobile application, which is available to and used by millions of consumers across the United States.
B. Prior FTC Enforcement Actions Against Respondent
This complaint is submitted in the context of Meta's existing obligations under prior FTC enforcement actions:
- undefined
The conduct documented in this complaint represents ongoing violations of these consent decree requirements.
III. STATEMENT OF FACTS
A. iOS Privacy Indicators - Consumer Expectations
Apple iOS includes privacy indicators (commonly called "orange dot" and "green dot") that appear in the device status bar when applications access the microphone or camera. These indicators are a core privacy protection that consumers rely upon to make informed decisions about:
- undefined
Apple represents these indicators as a transparency mechanism, and consumers reasonably rely on them as accurate representations of application behavior.
B. Meta's Representations About Privacy
Meta publicly represents to consumers that:
- undefined
In Meta's Privacy Policy and App Store descriptions, the company represents that it collects audio data only when users actively engage audio features (voice messages, video recording, etc.).
C. Documented Deceptive Conduct
Forensic analysis of Facebook iOS v345.0 and runtime testing reveals systematic circumvention of iOS privacy indicators:
1. CallKit Indicator Bypass Infrastructure
The Facebook application contains specific code designed to suppress the iOS "orange dot" microphone indicator:
**Technical Evidence:**
- undefined
**Runtime Evidence (December 29, 2025 Testing):**
- undefined
2. VoIP Entitlement Abuse
Facebook abuses iOS VoIP entitlements to maintain continuous audio session access without triggering privacy indicators:
**Technical Evidence:**
- undefined
**Runtime Evidence:**
- undefined
3. Background Audio Session Activation
Facebook activates audio sessions while backgrounded, without user interaction:
**Technical Evidence:**
- undefined
**Runtime Evidence:**
- undefined
4. Privacy Dialog Suppression
Facebook actively suppresses iOS privacy dialogs that would inform users of data access:
**Technical Evidence:**
- undefined
IV. LEGAL ANALYSIS
A. Deceptive Acts or Practices - FTC Act Section 5
An act or practice is deceptive under Section 5 if:
- undefined
**Application to Facebook's Conduct:**
1. Misleading Representation
Meta represents to consumers that iOS privacy indicators accurately reflect when the Facebook app accesses the microphone. This representation is false. The forensic evidence demonstrates that Facebook:
- undefined
Meta's representation that iOS privacy protections are respected creates a false sense of security that allows undisclosed data collection.
2. Reasonable Consumer Interpretation
Consumers reasonably expect that:
- undefined
These expectations are reasonable because:
- undefined
3. Materiality
The representation is material because consumers rely on privacy indicators when:
- undefined
If consumers knew that Facebook could capture audio without triggering iOS privacy indicators, many would revoke permissions or cease using the application.
B. Unfair Acts or Practices - FTC Act Section 5
An act or practice is unfair if it:
- undefined
**Application to Facebook's Conduct:**
1. Substantial Consumer Injury
- undefined
2. Not Reasonably Avoidable
Consumers cannot reasonably avoid this injury because:
- undefined
3. No Countervailing Benefits
There is no legitimate consumer benefit to suppressing privacy indicators. If indicator bypass serves any purpose, it is solely to enable surveillance without user knowledge, which provides no consumer benefit and substantial consumer harm.
V. CONSENT DECREE VIOLATIONS
A. 2019 FTC Settlement Requirements
The 2019 settlement with Facebook/Meta specifically required:
- undefined
B. Evidence of Violations
The documented conduct violates these requirements:
- undefined
VI. CALIFORNIA CONSUMER PRIVACY ACT (CCPA) VIOLATIONS
For California consumers, the documented conduct additionally violates the California Consumer Privacy Act:
A. Right to Know (Cal. Civ. Code Section 1798.100)
Consumers have the right to know what personal information is being collected about them. Meta fails to disclose:
- undefined
B. Deceptive Dark Patterns (Cal. Civ. Code Section 1798.140)
The following constitute prohibited dark patterns under CCPA:
| Configuration | Dark Pattern Type |
|---|---|
| `ama_hide_camera_permissions_dialog_apple_hig` | Obstruction |
| `PHPhotoLibraryPreventAutomaticLimitedAccessAlert` | Obstruction |
| `twilight_casting:skip_privacy_dialog` | Obstruction |
| VoIP mode for non-telephony application | False Hierarchy |
C. Penalty Exposure
Under CCPA, violations are subject to:
- undefined
Given the deliberate nature of the indicator bypass (specific code named for this purpose), intentional violation penalties should apply.
VII. CONSUMER HARM ANALYSIS
A. Scale of Affected Consumers
- undefined
B. Categories of Harm
1. Privacy Harm
- undefined
2. Autonomy Harm
- undefined
3. Dignity Harm
- undefined
4. Economic Harm
- undefined
C. Vulnerable Populations
The harm is particularly acute for:
- undefined
VIII. REQUESTED REMEDIES
The Complainant respectfully requests that the Federal Trade Commission:
A. Injunctive Relief
- undefined
B. Civil Penalties
- undefined
C. Consumer Notification
- undefined
D. Compliance Monitoring
- undefined
E. Redress
- undefined
IX. SUPPORTING EVIDENCE
The following evidence supports this complaint:
A. Technical Analysis Reports
- undefined
B. Runtime Evidence
- undefined
C. Configuration Evidence
- undefined
D. Binary Evidence
- undefined
X. CONCLUSION
The evidence demonstrates that Meta Platforms, Inc. has engaged in systematic deceptive trade practices by:
- undefined
This conduct violates Section 5 of the FTC Act, the 2019 FTC consent decree, and the California Consumer Privacy Act. It causes substantial, unavoidable harm to hundreds of millions of consumers who cannot detect or prevent this surveillance.
The Federal Trade Commission should exercise its full authority to stop this conduct, penalize these violations, notify affected consumers, and implement monitoring to prevent recurrence.
**Respectfully Submitted,**
Consumer Privacy Research Group
**Date:** December 29, 2025
APPENDIX A: TECHNICAL EVIDENCE SUMMARY
| Evidence Category | Finding | Source |
|---|---|---|
| Indicator Bypass Code | `setAllowCallKitActiveAdjust: FALSE` | Binary analysis |
| Bypass Polling | 18 calls/15 min from analytics code | Runtime monitoring |
| Telephony Access | 1,099 audio session accesses, 0 calls | Runtime monitoring |
| Background Audio | `cumulativeBackgroundAudioTime` tracking | Binary analysis |
| Silent Activation | `activateSilently` method | Binary analysis |
| Dialog Suppression | `ama_hide_camera_permissions_dialog` = TRUE | Config analysis |
| Background Persistence | 454 entitlement requests | Runtime monitoring |
| Audit Evasion | 40+ `*WithoutLogging` methods | Binary analysis |
| Remote Control | 26,726 configuration flags | Config analysis |
| **Massive Audio Capture** | **20,000+ captures in ~5 minutes** | Runtime Supplement |
| **Scroll-Capture Correlation** | **400-600 captures/sec during scroll** | Runtime Supplement |
| **Shimmer→Audio Architecture** | **5KB distance in binary = same compilation unit** | Binary Supplement |
| **GCD Infrastructure** | **46 GCD imports + custom analytics wrappers** | Binary Supplement |
| **Infinite Background Loop** | **35 tasks in 25 min, renewing every ~8 min** | Runtime Supplement |
| **VoIP API Abuse** | **321,700+ PKPushRegistry instances, 0 calls** | Runtime Supplement |
| **Persistent Covert Channel** | **MQTT renewed 4x while backgrounded** | Runtime Supplement |
APPENDIX B: CONSENT DECREE HISTORY
| Date | Action | Key Requirements |
|---|---|---|
| 2012 | Initial FTC Consent Order | Comprehensive privacy program |
| 2019 | $5 Billion Settlement | Affirmative consent, no misrepresentations |
| 2025 | This Complaint | Documents ongoing violations |
APPENDIX C: REGULATORY REFERENCES
- undefined
*End of Complaint*