Want to attract new users by making it simple to create an account on your website or app? Start with a social media login button.
Social media logins allow new users to create an account by clicking a button and using the same credentials they use on their favorite social sites with your site.
This allows developers to maximize their reach by connecting with users' social media profiles so users can cross-post between their own social media profiles and websites. It also removes the tediousness of signing up for a new account that may keep some users from doing so.
Facebook began offering the service back in 2008, and Google, Twitter, Instagram, and other social platforms now provide it. At present, nearly 4.5 million websites allow users to log in with their Facebook accounts.
Social logins have as many benefits for businesses as they do for users. It reduces the number of steps between arriving on the site and buying to improve conversions. One-click logins also decrease abandonment - new users don't have yet another password to remember.
Social logins also give more accurate information about a user because it comes from their profile. Otherwise, 83 percent of users admit to filling in false information when creating new profiles.
- Add information about your business: your website and/or app.
- Select the country:
- Answer the questions from our wizard relating to what type of information you collect from your users.
- 3. Facebook Login
- 4. Twitter Login
- 5. Google Login
- 6. Instagram Login
- 7. Summary
California's law technically applies to California, but the nature of the internet means all companies must comply because Californians will surely be accessing their sites.
Greater privacy protections arrived in the European Union in 2018 with the GDPR.
Why do EU and California law apply to your company? Because the nature of social media means that you will inevitably find users from the state of California or one of the European Union's 28 member states.
Once those laws apply, so too do the enforcement and punishment measures associated with them. That means you're liable for lawsuits and fines.
We'll show you what the four big "Log in with..." players request from developers and give a few examples for each login system.
Generally, the biggest social media players want three things:
- They want you to follow the guidelines you write in your own policy.
Let users know what kinds of data get shared to the social media site and whether users have control over it. The social media site will also let users know via a prompt based on information provided to the site during development and when you add the login button.
Facebook Login is a secure and straightforward way for users to log into your app quickly and without generating new data.
Both the law and Facebook require you to ask for permission to access the user's data when they log in to your app with their Facebook credentials. When the user grants the authority, it gives your app seamless access to the requested data items like usernames, profile photos, and friends lists.
Facebook's platform policy requests that you "give people control."
In Facebook's words, control means gaining consent, using permissions, and not prefilling content.
- Publicly available
- Easily accessible
- Explains what data you collect
- Describes how you use the data
- Remains consistent with Facebook's policy
Additionally, Facebook requires that you:
- Include a link in any app store listings where your app is available
TripCase users have three options for logging in:
- Create a new account
- Sign in with Facebook
- Sign in with Google
How does TripCase meet Facebook's requirements?
The New York Times allows social login with Facebook.
The New York Time's policies and linking practices are in line with what Facebook wants given that the organization doesn't mine and store data from Facebook or other social media platforms. It reiterates that users do the sharing, and that The New York Times doesn't share information without the users' permission.
- Inform users of what information your app collects
- Share how you intend to use the information
- Tell users whether you give user information to third parties
- Inform whether you honor Do Not Track requests
- Demonstrate how to manage cookies
- Disclose adding location information to tweets
- Post content on the user's behalf
- Follow/unfollow other users
- Change profile information
- Add hashtags to user's tweets
- Republic content accessed outside the Twitter API or Twitter tools
- Deploy user content for commercial promotion
- Store non-public content (i.e., direct messages)
- Share or publish private tweets or confidential information
You'll also need to get consent to perform these actions from the users if you perform these tasks after they already used the Sign in with Twitter function.
Medium allows users to Sign in with Twitter directly from its homepage.
Medium may collect information like friends lists or followers, which it then uses to recommend friends or connections to follow on the Medium platform. However, the site never posts to your social media accounts with permission.
Want to offer a Google Sign-In function to users? It operates similarly to Facebook and Twitter by providing one simple, secure way to sign in and manage accounts.
However, given the nature of Google services, the requirements differ substantially. You'll need to meet the requirements of the Google Buttons Policy.
Google Buttons Policy covers:
- Sign-In Button
- +1 button
- Google+ Badge
- Google+ Share
- Hangout Button
The second part refers to the EU User Consent Policy, which states that "you must ensure that certain disclosures are given to, and consents obtained from, end users in the European Economic Area."
Google also explicitly shares what information you're not allowed to collect and store including:
- Credit card details
- Bank account information
- Driver's license numbers
- Social security numbers
- Any other sensitive personal information
You may only collect the data only when you need to collect payment.
Google is also particularly wary of EU privacy laws, at least on paper. The firm focuses heavily on making everything conspicuous and easy to read. Some of Google's rules include:
- Make the Log in with Google button as prominent as other buttons
- Make it easy to know what Google account users connected
- Make signing in and out of the Google account and app easy to do
- Never sell or transmit data about a user related to their use of a Google button
- What information you collect
- What you do with the data
- Compliance with EU user consent policy
Pinterest uses a "Continue with Google" button on its login page:
If you log in with your Google account, Pinterest will obtain information from the Google account. The service reminds you that it's up to you to check what your privacy settings on your Google account allow you to share.
Finally, Pinterest notes that users can choose to share their Pinterest account data on other services like Google. Though, these would apply more to Facebook and Twitter than Google, Google+, or other services like YouTube.
According to Instagram's Platform Policy, your site or app needs to adhere to some terms if you wish to use the Login with Instagram feature, including the following:
- Have transparency about your company and app
- Disclose third-party data sharing in your policy
- Provide a way for users to request you to remove content or information and follow through with the removal
LIKEtoKNOWIt is an app built for social media and thrives on Instagram.
When users sign up for a new account, they can either log in with Instagram or create a new account and then link it to their Instagram if they choose.
The Policy itself tackles Instagram's request to note the information collected and tracked, data use and data sharing. While the login with Instagram feature isn't specifically mentioned, the Policy is very thorough and informative when it comes to what data it collects and how.
It also offers points on California (CalOPPA) privacy rights and the rights afforded to those in the EU and EEA under the GDPR.
Follow the law and developer guidelines and your site will benefit from compliantly allowing users to login quickly and conveniently.