Should you use the Facebook (Meta) Pixel on your website?

Posted on by Steve

The Meta (Facebook) Pixel can help not-for-profit organisations run more effective Facebook and Instagram ad campaigns by enabling retargeting, conversion tracking and potentially lower advertising costs.

But you should be aware, it is also a very intrusive tracking tool.

For not‑for‑profits working with vulnerable people (such as domestic violence support, mental health, or crisis services), this kind of tracking can pose serious privacy and safety risks.

Before installing the pixel on your website, you should carefully weigh the marketing benefits against their ethical responsibility to protect client privacy, and ensure your privacy policy clearly explains what data is being collected, shared, and why.

What the Meta Pixel is (in plain English)

The Meta Pixel is a piece of tracking code that can be added to your website. When someone loads a page, the pixel sends information back to Meta.

This information can include:

  • Pages visited
  • Buttons clicked
  • Forms viewed or submitted
  • Products viewed or added to a cart
  • Technical data such as device type, browser, IP address and timestamps

Meta then uses this data to understand user behaviour and to improve the performance of Facebook and Instagram advertising.

Where possible, Meta links this data to an existing Facebook or Instagram account. Where that isn’t possible, it can still be used to build a behavioural profile.

Why organisations use the pixel

There are legitimate reasons organisations choose to use the Meta Pixel, particularly when they’re actively running paid advertising on Facebook or Instagram.

Retargeting ads

Retargeting is the most common use case.

For example:

  • Someone visits a donation or sign‑up page
  • They leave without completing the action
  • Later, they see an ad reminding them to return

Without the pixel, this type of advertising isn’t possible.

Improved ad performance and lower costs

Meta uses pixel data to optimise who sees your ads. Over time, it attempts to show ads to people who are more likely to:

  • Donate
  • Register
  • Complete a form

In many cases, this can reduce cost‑per‑click or cost‑per‑conversion, making limited advertising budgets go further.

Measuring campaign results

The pixel helps answer questions like:

  • Did this ad actually lead to donations?
  • Which campaign performed best?
  • Which landing page worked better?

For marketing or fundraising teams, this kind of data can be valuable.

Where the privacy concerns begin

The downsides of the Meta Pixel are often poorly understood, or not discussed at all.

Data is sent to Meta immediately

When the pixel loads, data is transmitted to Meta as soon as the page is viewed.

This happens:

  • Before someone fills out a form
  • Before they consciously “opt in”
  • Often before they’ve read a privacy policy

The data is then combined with information from:

  • Other websites that use the Meta Pixel
  • Facebook and Instagram activity
  • Mobile apps and device‑level signals

This enables extremely detailed cross‑site profiling.

Private or incognito browsing does not prevent tracking

Many users assume incognito or private browsing protects their privacy.

In reality:

  • Private browsing mainly affects what is saved on their own device
  • It does not prevent data being sent to third parties
  • It does not stop cross‑site tracking or advanced fingerprinting techniques

This can create a false sense of safety for users who are actively trying to protect themselves.

People without Facebook or Instagram accounts can still be tracked

Even if someone has never created a Facebook or Instagram account, Meta can still collect data about their browsing behaviour.

It does this using combinations of:

  • IP addresses
  • Device and browser characteristics
  • Timing and behaviour patterns

This means non‑users can still be included in advertising profiles.

Sensitive behaviour can be inferred

For not‑for‑profits, this is often the most serious issue.

Even if your site never explicitly sends sensitive information, Meta may be able to infer things like:

  • Someone is seeking domestic violence support
  • Someone is researching crisis accommodation
  • Someone is reading about mental health or trauma recovery

For people in unsafe or controlling situations, this kind of profiling can carry real risk.

Why this matters more for not‑for‑profits

Not‑for‑profits frequently work with people who:

  • Are in crisis
  • Are vulnerable or marginalised
  • May be monitored by partners, family members or employers
  • Expect a higher standard of care and ethics

Adding a commercial advertising tracker changes the trust relationship, often without visitors realising it has happened.

A useful question to ask is:

What would a reasonable person expect to happen when they visit our website?

Australian privacy considerations

In Australia, privacy obligations are primarily governed by the Privacy Act 1988 and the Australian Privacy Principles (APPs).

For organisations covered by the Act, the use of the Meta Pixel may raise issues under:

  • APP 1 – Open and transparent management of personal information
    Visitors must be clearly informed about how their data is handled and shared.
  • APP 3 – Collection of solicited personal information
    Organisations should consider whether the data collected through third‑party tracking is reasonably necessary for their activities.
  • APP 6 – Use or disclosure of personal information
    Sending data to Meta is a disclosure to a third party, even if no form is submitted.

Even where consent banners are not legally required, regulators increasingly expect organisations to consider what an ordinary, reasonable person would expect – particularly when sensitive services are involved.

What this means for your privacy policy

If you choose to use the Meta Pixel, your privacy policy should be clear, specific and written in plain language.

At a minimum, it should:

  • Explicitly name Meta / Facebook as a third party receiving visitor data
  • Describe what types of data may be shared (for example, page views or actions taken)
  • Explain why the data is shared (such as advertising measurement or retargeting)
  • Acknowledge that Meta may use this data for its own advertising and profiling purposes

Avoid vague phrases like “we may use third‑party analytics tools.” These do not meaningfully inform users.

For organisations working with high‑risk or vulnerable people, it may also be appropriate to:

  • Minimise tracking on sensitive pages
  • Exclude crisis or support content from tracking entirely
  • Or avoid third‑party advertising trackers altogether

When the pixel might make sense

Using the Meta Pixel can be reasonable if:

  • You are actively running Facebook or Instagram ad campaigns
  • You understand and accept the privacy trade‑offs
  • You clearly disclose the tracking in your privacy policy
  • Your services are not highly sensitive in nature

Even then, it should be reviewed regularly rather than left running by default.

When it probably doesn’t

You should think very carefully before using the pixel if your organisation:

  • Supports victims of violence or abuse
  • Provides mental health, counselling or crisis services
  • Works with children, marginalised groups or people at risk
  • Is not actively running Meta ad campaigns

In these cases, the marketing benefits often do not outweigh the ethical and privacy risks.

For not‑for‑profits, values matter

Tracking technology is often presented as “just how the web works.”

But for not‑for‑profits, values matter.

Privacy is not a technical detail, it is part of how you care for the people you exist to support.

If you’re not sure why a tracking tool is on your website, that’s usually a good reason to pause and reassess.

Posted in Marketing, Not-for-profit, Tech

← Read more from the blog