01 Jun Facebook and Google hit with GDPR complaints, Syria and Iraq shut down networks, California moves to keep net neutrality
Corporate Accountability News Highlights is a regular series by Ranking Digital Rights highlighting key news related to tech companies, freedom of expression, and privacy issues around the world.
Facebook and Google face first GDPR complaints
Facebook and Google are already facing their first complaints for non-compliance with the EU’s sweeping new data protection rules that came into force on May 25.
The General Data Protection Regulation (GDPR), which regulates the processing of personal data of EU residents, gives individuals new rights to control how their data is being processed and used, including by businesses and organizations.
These changes include the rights to move one’s data from one company or service to another and the right to request the data a company or organisation holds on individuals. Data processors are also required to provide individuals with clear information on how their data is being processed including the purposes for processing their data, where that data comes from, for how long it will be stored, and whether it will be transferred outside the EU or shared with third parties.
The GDPR officially came into effect on May 24, 2016, giving companies roughly two years to prepare before the new rules came into force this May. Companies have been rolling out changes. Immediately after the regulations came into force, Austrian privacy activist Alex Schrems filed four complaints against Facebook, Instagram, WhatsApp, and Google’s Android for GDPR violations regarding limited user consent options. Schrems stated that while the GDPR requires “informed and specific consent,” the services impose a form of “forced consent” because users have to either agree to their privacy policies or lose complete access to these services.
Internet, mobile, and telecommunications companies should be transparent about how they handle user information including which user information they collect and share and for what purposes, how they collect that information and with whom they share it, and for how long they retain it. Companies should also give users options to control how their information is used, including for targeted advertising.
The 2018 Corporate Accountability Index found that companies do not disclose enough information about how they handle user information and that users remain largely in the dark about what information about them is collected and shared, with whom, and for what purposes.


