Google fined $57 million for Infringing data security rules in France
The chair of the French data protection authority (CNIL) publicly issued a fine of $57 million for failing to fulfill the GDPR (General Data Protection Regulations) obligations. According to the sources, Google failed to provide enough information to users about its data consent policies & how their data is being used, restricting their control over how their information should be used.
‘None Of Your Business’ (noyb) and La Quadrature du Net, two non-profit organizations, first filed a complaint back in May 2018 against Google and Facebook accusing them of violating GDPR rules for data security.
Chairman of noyb Max Schrems has issued the following statement after the fine was imposed on Google, “we are pleased that for the first time a European data protection authority is using the possibilities of GDPR to punish clear violations of the law. It is of high importance that the officials make it clear that the defaulters get punished accordingly and I would like to thank our supporters who make our work possible.”
The amount imposed as fine on Google may seem high but is very less if compared with the maximum amount which the GDPR allows the officials to impose on a company as a fine for violating data rules. GDPR allows a maximum of four percent of its annual global turnover for more serious offenses. For a giant company like Google, it would have been nearly in billions.
Google, following the controversy, issued a statement saying, “we are trying and will definitely overcome the flaws, meeting the user’s expectations for ‘more transparency and control’. We will take the necessary steps and study the CNIL’s decision in order to achieve what the people expect of us.”