Google to pay EUR 50 million GDPR penalty over ads

Tuesday 22 January 2019 10:11 CET | News

Google has been fined 50 million euros by CNIL, a French data regulator, for a breach of the EU’s data protection rules.

CNIL said it had levied the fine for “lack of transparency, inadequate information and lack of valid consent regarding ads personalisation”, and that consumers were “not sufficiently informed” about how the tech company collected data to personalise advertising.

Moreover, the French regulator said “the information on processing operations for the ads personalisation is diluted in several documents” and that “the user gives his or her consent in full, for all the processing operations purposes carried out by Google based on this consent (ads personalisation, speech recognition, etc.)”. Still GDPR says that the consent is ‘specific’ only if it is given distinctly for each purpose.

Google said it was “studying the decision” to determine its next steps, according to BBC.

The first complaint under the EU’s new General Data Protection Regulation (GDPR) against Google was filed on 25 May 2018, the day the legislation took effect. The noyb and La Quadrature du Net claimed Google did not have a valid legal basis to process user data for ad personalisation, as mandated by the GDPR.

Free Headlines in your E-mail

Every day we send out a free e-mail with the most important headlines of the last 24 hours.

Subscribe now

Keywords: Google, CNIL, data regulator, GDPR, fine, Europe, data protection, data consent, Google ads
Countries: World

Industry Events