France slaps Facebook with maximum fine over privacy

Facebook told to pay €150,000 for following users around the web to serve them ads

France has slapped Facebook with its maximum fine for invading users' privacy, a 150,000 charge that's small change versus its $8 billion in revenue last quarter.

French data watchdog, the Commission Nationale de l'Informatique et des Liberts (CNIL), was investigating the changes Facebook made to its privacy policy back in 2015 to ensure they met local data protection laws, alongside regulators in Belgium, the Netherlands, Germany and Spain. France then demanded Facebook stop tracking users without consent and cease moving personal data to the US. 

Advertisement - Article continues below

The CNIL found Facebook was compiling a "massive" tranche of personal data on users "in order to display targeted advertising". That includes on third-party websites via a cookie, often without user knowledge. After a hearing the CNIL, said it didn't believe users clearly understood the extent to which Facebook was stalking them across the web, add ing that the company doesn't clearly communicate their data rights. The watchdog warned Facebook to stop collecting so much data and to stop sharing some of it with the US, but fined the company when it failed to meet those demands. 

Facebook argues the French-led group of data watchdogs aren't the right body to be investigating the social network, instead favouring the Irish regulator as its European operations are based in that country. 

Advertisement
Advertisement - Article continues below

"We take note of the CNIL's decision with which we respectfully disagree," the company said in a statement to the Guardian. "At Facebook, putting people in control of their privacy is at the heart of everything we do. Over recent years, we've simplified our policies further to help people understand how we use information to make Facebook better."

The 150,000 fine is a small slice of Facebook's profits, but it's lucky not to be paying more. The CNIL increased its maximum fine to 3 million last year. 

Advertisement

Recommended

Visit/policy-legislation/data-protection/355184/supreme-court-finds-morrisons-was-not-liable-for-2014
data protection

Supreme Court rules Morrisons was not liable for 2014 data breach

1 Apr 2020
Visit/security/privacy/355048/government-may-trace-covid-19-patients-using-mobile-phone-data
privacy

UK government may trace COVID-19 patients using mobile phone data

20 Mar 2020
Visit/policy-legislation/general-data-protection-regulation-gdpr/354842/irish-data-regulator-racks-up
General Data Protection Regulation (GDPR)

Irish data regulator racks up GDPR cases against Big Tech

24 Feb 2020
Visit/data-insights/data-management/354423/eu-us-data-transfer-tools-used-by-facebook-ruled-legal
data management

EU-US data transfer tools used by Facebook ruled legal

19 Dec 2019

Most Popular

Visit/security/privacy/355211/google-releases-location-data-to-showcase-effectiveness-of-coronavirus
privacy

Google releases location data to show effectiveness of coronavirus lockdowns

3 Apr 2020
Visit/data-insights/data-management/355170/oracle-cloud-courses-are-free-during-coronavirus-lockdown
data management

Oracle cloud courses are free during coronavirus lockdown

31 Mar 2020
Visit/software/355113/companies-offering-free-software-to-fight-covid-19
Software

These are the companies offering free software during the coronavirus crisis

2 Apr 2020