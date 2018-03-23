AP, NEW YORK

Breaking more than four days of silence, Facebook chief executive Mark Zuckerberg admitted mistakes and outlined steps to protect user data in light of a privacy scandal involving a data-mining firm.

Zuckerberg on Wednesday said that Facebook has a “responsibility” to protect its users’ data and if it fails, “we don’t deserve to serve you.”

Zuckerberg and Facebook’s No. 2 executive, Sheryl Sandberg, have been quiet since news broke on Friday last week that Cambridge Analytica might have used data improperly obtained from about 50 million Facebook users to try to sway elections.

Facebook shares have dropped about 8 percent since the revelations were first published, raising questions about whether social media sites are violating users’ privacy.

Even before the scandal broke, Facebook has already taken the most important steps to prevent a recurrence, Zuckerberg said.

For example, in 2014, it reduced access outside apps had to user data. However, some of the measures did not take effect until a year later, allowing Cambridge to access the data in the intervening months.

Zuckerberg said that there is more to do.

He said in a Facebook post on Wednesday that the social media site would ban developers that do not agree to an audit.

An app’s developer will no longer have access to data from people who have not used that app in three months. Data will also be generally limited to user names, profile photos and e-mail, unless the developer signs a contract with Facebook and gets user approval.

In a separate post, Facebook said it would inform people whose data was misused by apps and in the future, when it bans an app for misusing people’s data, Facebook promises to tell everyone who used it.

Facebook first learned of this breach of privacy more than two years ago, but had not mentioned it publicly until Friday.

The company is also “building a way” for people to know if their data was accessed by “This Is Your Digital Life,” though there is no way to do this at the moment.

The app is the psychological profiling quiz that researcher Aleksandr Kogan created and paid about 270,000 people to take part in. Cambridge Analytica later obtained data from the app for about 50 million Facebook users, because it also vacuumed up data on people’s friends.

Facebook did not say how it would inform users if their data was compromised, but it could look similar to the page it set up for users to see if they liked or followed accounts set up by the Russian troll farm Internet Research Agency, accused of meddling with the 2016 US presidential elections.

However, this tool does not show users if they merely saw — even “liked” — posts from those pages.

Earlier on Wednesday, Kogan described himself as a scapegoat and said he had no idea his work would be used in then-US presidential candidate Donald Trump’s 2016 campaign.

Kogan, a psychology researcher at Cambridge University, told the BBC that Facebook and Cambridge Analytica have tried to place the blame on him for violating the social media platform’s terms of service, even though Cambridge Analytica ensured him that everything he did was legal.

“Honestly, we thought we were acting perfectly appropriately,” Kogan said. “We thought we were doing something that was really normal.”

Cambridge Analytica has shifted the blame to Kogan, which the firm described as a contractor.