Google Gets Slapped With $57 Million Fine For Violating The EU’s GDPR Regulations

You may recall that the EU was implementing a set of regulations called the GDPR which was meant to among other things, hold companies accountable for the data that they have. We now have our first big company who’s run afoul of these regulations. And surprise, it’s Google.

France’s top data-privacy agency, known as the CNIL, said Monday that Google failed to fully disclose to users how their personal information is collected and what happens to it. Google also did not properly obtain users’ consent for the purpose of showing them personalized ads, the watchdog agency said.

French regulators said Google’s business practices had run afoul of Europe’s new General Data Protection Regulation. Implemented in 2018, the sweeping privacy rules commonly referred to as GDPR have set a global standard that has forced Google and its tech peers in Silicon Valley to rethink their data-collection practices or risk sky-high fines. The United States lacks a similar, overarching federal consumer privacy law, a deficiency in the eyes of privacy hawks that has elevated Europe as the world’s de facto privacy cop.

Despite Google’s changes to its business practices, the CNIL said in a statement that “the infringements observed deprive the users of essential guarantees regarding processing operations that can reveal important parts of their private life since they are based on a huge amount of data, a wide variety of services and almost unlimited possible combinations.”

The total cost to Google is 50 Million Euros which is about $57 Million USD. Not exactly a trivial amount of money. Google is apparently looking at this to determine what their “next steps” will be. Which I assume means that they’re going to fight this. Which doesn’t come as a shock as I am sure that Google does not want to be the poster child of bad behavior when it comes to the GDPR. The question is, how many other big companies will be in Google’s shoes and how expensive will that be before companies get the message and do the right thing which is to seriously protect customer data?

Leave a Reply

%d bloggers like this: