AI & DesignStudio Process6 min read

Google shutting down Google+ following massive undisclosed user data exposure

PR teams at Google and Facebook have been working overtime this week due to breaches of user data on their networks. Google announced that it would shut down Google+ after it discovered a security vulnerability that exposed the private data of up to 500,000 users. Google+ is the company’s long-struggling answer to Facebook’s giant social network.

BriteWire Editorial·2018

Google shutting down Google+ following massive undisclosed user data exposure.

Google announced the shutdown of Google+ after discovering a security vulnerability that exposed the private data of up to 500,000 users. The platform — Google's long-struggling answer to Facebook — was already running on fumes. What made headlines was not the closure itself, but what Google chose not to say.

500K

User accounts exposed by the vulnerability

90%

Of Google+ sessions lasted under five seconds

10 mo.

Phased shutdown period ending August 2019

A Platform Nobody Used

Google+ never found its audience. Google itself acknowledged "low usage and engagement" across the platform — a damning admission for a product the company once backed aggressively. At its peak, Google integrated Google+ data directly into search results, personalizing rankings based on what a user's connections had endorsed. That push failed to move the needle.

The shutdown is not a surprise. It is an overdue acknowledgment of a product that never delivered on its premise.

The Disclosure Problem

Google discovered the vulnerability in March 2018 but did not disclose it to users. The company's internal "Privacy and Data Protection Office" determined that disclosure was not legally required, citing no evidence that any third party had accessed the exposed data. That decision is now under scrutiny.

California and European regulations both set standards for when companies must report security incidents to users. Critics argue that Google's decision to stay silent — while internally debating the reputational risk of disclosure — reflects a broader accountability gap across major technology platforms.

"Monopolistic internet platforms like Google and Facebook are probably 'too big to secure' and are certainly 'too big to trust' blindly."— Jeff Hauser, Centre for Economic and Policy Research

Privacy Reforms Announced

Alongside the Google+ shutdown, Google announced a series of changes to its privacy policies aimed at giving users greater control over data shared with third-party app developers. Users will gain more granular permissions — able to approve or restrict access to specific account features such as calendar entries and Gmail independently, rather than granting broad access in a single step.

Google will also further restrict third-party access to email, SMS, contacts, and phone logs. The reforms are a direct response to growing pressure from regulators and the public following a series of high-profile data incidents across the industry.

Google+ had genuine ideas worth exploring — its collections feature offered a clean way to organize content by topic or audience. But good ideas poorly executed do not survive. The more pressing question now is whether Google's privacy commitments represent real structural change, or simply a response calibrated to reduce regulatory heat.

The technology industry's record on self-regulation is not convincing. Meaningful oversight is long overdue.