EU Fines Meta $416m

Uploaded on 2023-01-06 in TECHNOLOGY-Key Areas-Social Media, FREE TO VIEW, BUSINESS-Services-Law

On January 4th the Irish Data Protection Commission (DPC)  announced the conclusion of two inquiries into the data processing operations of Meta Platforms Ireland Limited (“Meta Ireland”) in connection with the delivery of its Facebook and Instagram services,” and Meta has been fined €390m ($416 or £346m) for breaking EU data rules.

The DPC announced in Dublin that the way Meta used peoples' data for ads on Facebook and Instagram, which it owns, was unlawful. 

The regulator said that Facebook and Instagram can not employ "force consent" by telling users that they have to accept how their data is used or leave the platform. Right now, Meta has three months to change how it receives and uses data to target ads and Meta says it will appeal, stressing that the decision does not prevent personalised advertising on its platforms. Facebook collected advertising revenue of $118bn (£97.8bn) in 202.

Privacy campaigners say the decision is a major victory and means Meta will have to give users real choice over how their data is used to target online advertisements. 

This recent DPC investigation was started by complaints made in 2018 by privacy campaigner Max Schrems, on behalf of two users in Austria and Belgium. The complaint was brought just as the EU's new data and privacy law, the General Data Protection Regulation (GDPR), came into operation.

Meta's spokespeople say that it plans to challenge the size of the fines imposed, "given that regulators themselves disagreed with each other on this issue". The company argues that far from forcing people to accept how it uses data, it gives consumers a number of tools to control how their data is used. 

In September 2021, Meta was forced to pay out $420 million for how it handled teens’ Instagram data, in March the fine was $17 million for record-keeping problems while in October 2021, Meta was fined around $233 million for various violations.

The latest DPC ruling could damage Meta’s EU profits, because, according to Austrian lawyer Max Schrems who sued Meta in 2018, people now must consent for their data to be used for ads and can also withdraw their consent at any time.

DPC:      BBC:      Gizmodo:     Forbes:      Press United:       Focus Washington:

You Might Also Read: 

The Effects Of GDPR On EU / US Relations:

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

« Multi-Factor Authentication Is No Shortcut To Cyber Resilience
PAM, IAM, Or Both? »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

PrimeKey

PrimeKey

PrimeKey provides organisations with the ability to implement security solutions such as e-ID, e-Passports, authentication, digital signatures, unified digital identities and validation.

V-Key

V-Key

V-Key is a global leader in software based digital security, providing solutions for mobile identity, authentication, authorization, and mobile payments for major banks.

C11 Cyber Security & Digital Innovation Centre

C11 Cyber Security & Digital Innovation Centre

C11 is working with local and national partners to develop talent and bring brilliant minds and brilliant businesses together.

Prompt

Prompt

Prompt supports the creation of partnerships and the setting up of industrial-institutional applied R&D projects for all ICT sectors.

Security Alliance

Security Alliance

Security Alliance provide bespoke cyber intelligence consulting and research services.

Krypsis

Krypsis

Krypsys is an information security company with a focus on helping you defend your information and data against emerging security threats.

Newtec Services

Newtec Services

IT should be responsive, adaptive, and smart. Now more than ever, you need a business that runs efficiently and can adapt to today's challenges. We can help with custom IT solutions.

DataFleets

DataFleets

DataFleets is a privacy-preserving data engine that unifies distributed data for rapid access, agile analytics, and automated compliance.

Deduce

Deduce

Deduce use a combination of aggregate historical user data, identity risk intelligence, and proactive alerting to deliver a robust identity and authentication solution.

Have I Been Pwned (HIBP)

Have I Been Pwned (HIBP)

Have I Been Pwned is a free resource for anyone to quickly assess if they may have been put at risk due to an online account of theirs having been compromised or "pwned" in a data breach.

Global Cybersecurity Institute - Rochester Institute of Technology (RIT)

Global Cybersecurity Institute - Rochester Institute of Technology (RIT)

At RIT’s Global Cybersecurity Institute, we educate and train cybersecurity professionals; develop new cybersecurity and AI-based knowledge for industry, academia, and government.

Association for Uncrewed Vehicle Systems International (AUVSI)

Association for Uncrewed Vehicle Systems International (AUVSI)

AUVSI is the world's largest nonprofit organization dedicated to the advancement of uncrewed systems and robotics. Focus areas include cyber security for uncrewed systems and robotics.

Rhodian Group

Rhodian Group

Rhodian Group (formerly Adar) specialize in providing Technology, Cybersecurity, and Compliance services to the insurance industry.

Invisinet Technologies

Invisinet Technologies

Invisinet is a cybersecurity technology company specializing in innovative solutions that protect network infrastructure and critical assets from advanced threats.

Corgea

Corgea

Corgea is AI-powered security platform that finds, triages and fixes your insecure code.

Hive Systems

Hive Systems

Hive Systems specialize in tailored solutions that unify risk assessments, IT, security awareness, and cybersecurity operations for businesses of all sizes.