Meta has been fined by the Irish Data Protection Commission* $400 million for breaches in the collection and processing of user data for targeted advertising. The Verge writes about it. The supervisory authority believes that the company has forced users to consent to the processing of their personal data in Instagram* and Facebook*.
The fines were the result of two complaints filed in 2018. The company was accused of non-compliance with the European General Data Protection Regulation (GDPR). The new law was passed in the same year, but despite this meta* continued to ask users to consent to the processing of data in the user agreement. Complaints indicated that doing so would be tantamount to requiring them to consent to targeted advertising.
The regulator believed that the company had not clearly explained all the terms to users. After consultation with the European Data Protection Board, it was decided that such consent cannot protect such breaches. In addition to the fines imposed, the company was asked to adapt its services to the requirements of the GDPR within three months.
Meta* plans to appeal the decision. Company officials also said that this will not prevent the services from showing targeted advertisements. “We are evaluating various options on how we can continue to offer users our personalized service.”says Meta in a statement.*.
This isn’t Meta’s first punishment* for the processing of personal data. In September, the company was fined $402 million for handling information about teenagers, and in November the developer was ordered to pay $276 million for data breaches in 2021.
* It is included in the list of public associations and religious organizations for which the court made a final decision, activities on the grounds of Federal Law No. 114-FZ of July 25, 2002 “On Combating Extremist Activity”.