Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Privacy

France Gives Google Three Month Deadline Over Privacy Policy

PARIS – France on Thursday threatened Google with a fine of up to 150,000 euros ($198,000) if it does not bring its privacy procedures into line with French law on data protection within three months.

PARIS – France on Thursday threatened Google with a fine of up to 150,000 euros ($198,000) if it does not bring its privacy procedures into line with French law on data protection within three months.

In a move that France hopes will be followed by other European states, the national data protection agency Cnil said the US Internet giant had failed to provide it with sufficient assurances about the storing and use of data it obtains from users.

“The information received in respect to this have so far been too imprecise or vague,” Cnil President Isabelle Falque-Pierrotin told AFP.

She said that Google must set a clear limit on the length of time it can store the data obtained from web surfers and seek prior approval from them before installing cookies on their devices.

France’s move follows Google’s introduction last year of a new privacy policy which enables it to track users activity across its search engine, gmail, the Google+ social networking platform and other services it owns, which include YouTube.

Related: Privacy Statements: Where Size Matters

The changes make it easier for Google to collect and process data that could be used by advertisers to target individuals with offers tailored to their specific interest, thereby increasing the company’s revenue potential.

The changes have been widely criticised because of the implications for privacy but the pressure on Google to change how it operates has been limited to date.

Advertisement. Scroll to continue reading.

The 27-member European Union warned Google in October 2012 that its data protection procedures did not comply with an EU directive on the subject and gave the company four months to change them.

That deadline passed without any action, prompting France to set up a task force of individual member states interested in pursuing the issue that involved Britain, Germany, Italy, the Netherlands and Spain.

Cnil President Falque-Pierrotin noted that while the maximum fine Google could face under French law was relatively small, Spain has the capacity of impose a penalty of up to one million euros ($1.3m).

Google has defended the changes it made last year on the ground that they simplify and standardise its approach across its various services.

But critics argue that the policy, which offers no ability to opt out aside from refraining from signing into Google services, gives the operator of the world’s largest search engine unprecedented ability to monitor its users.

Google has repeatedly stated that its privacy policy respects European law.

Related: Patriot Act and Cloud Privacy: Notes from Europe

Related: Privacy Statements: Where Size Matters

Written By

AFP 2023

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.

Register

SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.

Register

Expert Insights

Related Content

Artificial Intelligence

Two of humanity’s greatest drivers, greed and curiosity, will push AI development forward. Our only hope is that we can control it.

Cybersecurity Funding

Los Gatos, Calif-based data protection and privacy firm Titaniam has raised $6 million seed funding from Refinery Ventures, with participation from Fusion Fund, Shasta...

Privacy

Many in the United States see TikTok, the highly popular video-sharing app owned by Beijing-based ByteDance, as a threat to national security.The following is...

Privacy

Employees of Chinese tech giant ByteDance improperly accessed data from social media platform TikTok to track journalists in a bid to identify the source...

Application Security

Open banking can be described as a perfect storm for cybersecurity. At one end, small startups with financial acumen but little or no security...

Mobile & Wireless

As smartphone manufacturers are improving the ear speakers in their devices, it can become easier for malicious actors to leverage a particular side-channel for...

Government

The proposed UK Online Safety Bill is the enactment of two long held government desires: the removal of harmful internet content, and visibility into...

Cloud Security

AWS has announced that server-side encryption (SSE-S3) is now enabled by default for all Simple Storage Service (S3) buckets.