Feeds

Google tickled with TINY fine from French privacy watchdog

Pathetic penalty is a record figure for CNIL, apparently

Internet Security Threat Report 2014

Google's failure to comply with France's data protection law over the ad giant's 2012 privacy policy tweak has landed it with a minuscule fine of just €150,000.

In September, Commission Nationale de l’Informatique et des Libertés (CNIL) warned Google that it would face a monetary penalty after it refused to comply with the French data regulator's demands.

CNIL had opened an investigation into Google's brazen move – on behalf of the European Union's Article 29 Working Party – to determine whether the company had violated data laws when it made the changes to its service in March 2012, despite a public outcry.

The watchdog said today that it had ordered Mountain View to "publish a communique on this decision on its homepage Google.fr, within eight days of its notification."

Google was told about the fine on 3 January. The CNIL said:

This financial penalty is the highest which the Committee has issued until now. It is justified by the number and the seriousness of the breaches stated in the case.

It added that the company's privacy policy had violated several legal requirements, including failing to comply with its obligation to obtain user consent to store cookies on their devices and to define retention periods applicable to the data which Google processes.

The regulator also disputed Google's claim that the law was not applicable to its services because, CNIL said, French legislation applied to the processing of netizens' personal data in that country.

Last month, Google was fined a piddling €900,000 for three separate breaches of Spain's Data Protection Act.

The penalty came after data cops in the Netherlands had similarly concluded that Google had breached its DP law.

Three other EU countries (UK, Germany and Italy) are still mulling over enforcement actions against the Larry Page-run firm. ®

Internet Security Threat Report 2014

More from The Register

next story
Docker's app containers are coming to Windows Server, says Microsoft
MS chases app deployment speeds already enjoyed by Linux devs
IBM storage revenues sink: 'We are disappointed,' says CEO
Time to put the storage biz up for sale?
'Hmm, why CAN'T I run a water pipe through that rack of media servers?'
Leaving Las Vegas for Armenia kludging and Dubai dune bashing
Facebook slurps 'paste sites' for STOLEN passwords, sprinkles on hash and salt
Zuck's ad empire DOESN'T see details in plain text. Phew!
Windows 10: Forget Cloudobile, put Security and Privacy First
But - dammit - It would be insane to say 'don't collect, because NSA'
Symantec backs out of Backup Exec: Plans to can appliance in Jan
Will still provide support to existing customers
VMware's tool to harden virtual networks: a spreadsheet
NSX security guide lands in intriguing format
prev story

Whitepapers

Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
Cloud and hybrid-cloud data protection for VMware
Learn how quick and easy it is to configure backups and perform restores for VMware environments.
Three 1TB solid state scorchers up for grabs
Big SSDs can be expensive but think big and think free because you could be the lucky winner of one of three 1TB Samsung SSD 840 EVO drives that we’re giving away worth over £300 apiece.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.