Saturday, 26 May 2018 10:16

AS GDPR takes effect, Google, Facebook hit with US$8.8b suits Featured


On the very day that the European Union's new privacy law, the General Data Protection Regulation, took effect, a privacy activist has hit Google with a lawsuit, claiming €3.7 billion (US$4.3 billion) for non-compliance.

The GDPR took effect on Friday along with a second law, the Data Protection Directive, which deals with the way EU law enforcement authorities handle citizens' data.

Austrian lawyer Max Schrems has also filed a complaint against Facebook, and its subsidiaries Instagram and WhatsApp, making a similar allegation and seeking €3.9 billion (US$4.5 billion), according to The Verge.

The basis for his complaints is that though the companies have made changes to their privacy policies to meet the requirements of the GDPR, the new policies amount to an all-or-nothing offer.

Legal expert Rashda Rana, a senior counsel in the UK, told  iTWire before the legislation came into force that it required businesses to protect personal data and privacy of EU citizens for transactions that occur within EU member states.

Plus, it also regulates the export of personal data outside the EU. The GDPR’s overall aim is to give European residents greater control and visibility over their personal data, thereby also strengthening data protection.

The GDPR states that those who are covered by it should be able to pick and choose parts of a policy to which they want to agree.

Schrems' argument is that neither Google nor Facebook offer users this fine-grained control over what happens to their personal data.

He told the Financial Times: “They totally know that it’s going to be a violation. They don’t even try to hide it.”

Schrems' complaints were made to data protection authorities in EU states other than Ireland and will be forwarded to the Irish Data Protection Authority as both Google and Facebook have the EU head offices in Dublin.

The Austrian activist has set up a privacy lobby group called None of Your Business to file the complaints.

His complaint against Google relates to the company's Android mobile operating system which, he claims, bounces a user into the Google ecosystem, an act he claims is a breach of the informed consent stipulation of the GDPR.

Schrems has in the past made complaints against Facebook in 2011, 2013 and 2014. In 2015, he obtained a ruling from the European Union's Court of Justice knocking down a safe harbour provision that permitted companies to move personal data from the EU to the US.


Australia is a cyber espionage hot spot.

As we automate, script and move to the cloud, more and more businesses are reliant on infrastructure that has high potential to be exposed to risk.

It only takes one awry email to expose an accounts payable process, and for cyber attackers to cost a business thousands of dollars.

In the free white paper ‘6 steps to improve your Business Cyber Security’ you will learn some simple steps you should be taking to prevent devastating malicious cyber attacks from destroying your business.

Cyber security can no longer be ignored, in this white paper you will learn:

· How does business security get breached?
· What can it cost to get it wrong?
· 6 actionable tips


Sam Varghese

website statistics

Sam Varghese has been writing for iTWire since 2006, a year after the site came into existence. For nearly a decade thereafter, he wrote mostly about free and open source software, based on his own use of this genre of software. Since May 2016, he has been writing across many areas of technology. He has been a journalist for nearly 40 years in India (Indian Express and Deccan Herald), the UAE (Khaleej Times) and Australia (Daily Commercial News (now defunct) and The Age). His personal blog is titled Irregular Expression.



Recent Comments