In a recent press release, Norway’s data protection regulator, Datatilsynet, denounced Meta’s practice of tracking Instagram and Facebook users, stating that it violates their privacy. The regulator has imposed a temporary ban on Meta’s behavioral advertising on these platforms and has threatened to fine the company one million crowns ($100,000) per day if it fails to take remedial action from August 4th until November 3rd. The severity of the violation prompted Datatilsynet to intervene immediately to protect users’ privacy.
The decision by Norway’s data protection regulator follows a European court ruling that prohibits Meta from harvesting user data such as location, behavior, and more for advertising purposes. Datatilsynet has not only referred Meta’s actions to Europe’s Data Protection Board but also aims to “put additional pressure” on the company by potentially extending the fine across Europe. Although Norway is a member of the European single market, it is not an official EU member.
In response to the regulator’s decision, Meta has mentioned that it is reviewing the judgment but assures its users that the ban will not immediately impact its services. The company emphasizes its commitment to engaging constructively with the Irish Data Protection Commission (DPC), which serves as its lead regulator in the EU, in order to comply with its decision. Meta also highlights the ongoing debate surrounding legal bases for data processing and the overall lack of regulatory certainty in this area.
Meta is facing mounting pressure regarding its data privacy practices across Europe. Ireland’s data regulator, the DPC, recently ruled that Meta cannot collect user data for behavioral advertising. Furthermore, in May, Meta received a record-breaking fine of €1.2 billion ($1.3 billion) for transferring EU user data to its servers in the US. These incidents demonstrate the growing concerns and repercussions Meta is facing due to its handling of user data.
Additionally, Meta’s new Twitter rival, Threads, is currently unavailable in the European Union due to privacy concerns. Meta explains that it has not yet prepared the service for a European launch outside the UK, which is not fully governed by the General Data Protection Regulation (GDPR) or EU privacy rules. In fact, Meta has gone as far as blocking EU users from accessing Threads through a VPN, highlighting its cautious approach to data privacy compliance.
It is evident that Meta’s privacy practices have come under significant scrutiny in recent times, leading to regulatory interventions and fines. The violations committed by the company have evoked concerns about the protection and privacy of user data on its platforms. As a member of the European single market, but not officially part of the EU, Norway’s actions could have wider consequences and set a precedent for other European countries.
Given the increasing attention and regulatory actions surrounding data privacy, it is crucial for Meta to reassess its data tracking practices and ensure compliance with European data protection laws. Restoration of user trust and compliance with legal frameworks are paramount to maintaining a sustainable and ethical approach to data privacy. In doing so, Meta can mitigate potential legal and financial repercussions while safeguarding the rights and privacy of its users.
