re 1): as this situation stands now, facebook threatens via C&D or sues other companies that try this invoking us law.
However if you incorporate in countries that are actively hostile to companies like facebook/google (i.e. Indonesia, China), you can operate aggregators of such data more effectively. However that barrier is a bit different from jumping over this barrier in the due to Facebook incumbent status.
Can you provide evidence of that? I find this interesting, because a lot of people are saying "it's public data." I would argue that if you get a C&D for scraping/etc, it's no longer public.
Facebook's c&d against me and my friend's company we bootstrapped to about $100k annualized before decicing to close stuff down to changes from this: https://lumendatabase.org/notices/2037976
I'm in Indonesia now, and still have everything pretty much ready where I left off (and technically its even easier than before to exfil data from this walled garden sans user account, because of the huge surface of oauth keys out there in the wild as it is for every website with similar protocols and api's) so i'm just doing due diligence now to make sure that like me and my friend handled CNIL[0] from the US, we can effectively send any facebook requests to /dev/null
So I say to anyone else if you think its "public data" try to start a company that builds a derivative product within the US leveraging such "public data" ;)
However if you incorporate in countries that are actively hostile to companies like facebook/google (i.e. Indonesia, China), you can operate aggregators of such data more effectively. However that barrier is a bit different from jumping over this barrier in the due to Facebook incumbent status.