Yes, but unlikely what's happening here. I assume incompetence not malice on PP's part. That doesn't excuse this privacy leak. My point is that this isn't all on PP. I consider Google and FB malicious in sharing data in their zeal for dollars. I consider PP incompetent in protecting privacy in its marketing efforts, which yes, also needs dollars, but it's a non-profit and really not in its interests to share this information.
But it’s possible from the backend: https://developers.facebook.com/docs/marketing-api/app-event...