Photo by Nick Fewings on Unsplash [Download]

EU websites use of Google Analytics and Facebook Connect targeted by post-Schrems II privacy complaints

Among the entities listed in its complaint are ecommerce companies, publishers & broadcasters, telcos & ISPs, banks and universities including Airbnb Ireland, Allied Irish Banks, Danske Bank, Fastweb, MTV Internet, Sky Deutschland, Takeaway.com and Tele2, to name a few.

A quick analysis of the HTML source code of major EU webpages shows that many companies still use Google Analytics or Facebook Connect one month after a major judgment by the Court of Justice of the European Union despite both companies clearly falling under US surveillance laws, such as FISA 702, the campaign group writes on its website.

Google still claims to rely on the Privacy Shield a month after it was invalidated, while Facebook continues to use the SCCs , despite the Court finding that US surveillance laws violate the essence of EU fundamental rights.

Weve reached out to Facebook and Google with questions about their legal bases for such transfers and will update this report with any response.

His updated complaint ended up taking down the EU-US Privacy Shield last month although hed actually targeted Facebooks use of a separate data transfer mechanism , urging its data supervisor, Irelands DPC, to step in and suspend its use of that tool.

The regulator chose to go to court instead, raising wider concerns about the legality of EU-US data transfer arrangements which resulted in the CJEU concluding that the Commission should not have granted the US a so-called adequacy agreement, thus pulling the rug out from under Privacy Shield.

The decision means the US is now whats considered a third country in data protection terms, with no special arrangement to enable it to process EU users information.

Both companies admit that they transfer data of Europeans to the US for processing, where these companies are under a legal obligation to make such data available to US agencies like the NSA. Neither Google Analytics nor Facebook Connect are essential to run these webpages and are services that could have been replaced or at least deactivated by now, said Schrems, honorary chair of noyb.eu, in a statement.

Whether or not you can transfer personal data on the basis of SCCs will depend on the result of your assessment, taking into account the circumstances of the transfers, and supplementary measures you could put in place, the EDPB added.

Original article
Author: Natasha Lomas

TechCrunch is a leading technology media property, dedicated to obsessively profiling startups, reviewing new Internet products, and breaking tech news.

Natasha Lomas has recently written 11 articles on similar topics including :
  1. "Google has agreed to pay a 1.1 million fine over misleading star ratings for hotels in France. The tech giant had been applying its own (algorithmic) system of ratings for hotels applied via its search engine and on Google Maps". (February 15, 2021)
  2. "Europe has greenlit Googles $2.1BN acquisition of fitness wearable maker Fitbit, applying a number of conditions intended to shrink competition concerns over letting it gobble a major cache of health and wellness data following months of regulatory scrutiny of the deal". (December 17, 2020)
  3. "The European Unions lead data protection supervisor has recommended that a ban on targeted advertising based on tracking Internet users digital activity be included in a major reform of digital services rules which aims to increase operators accountability, among other key goal". (February 10, 2021)
  4. "The European Commission must block the Google -Fitbit merger as a matter of democratic imperative, prominent academic and author Shoshana Zuboff has warned". (December 11, 2020)
  5. "Mozilla has further beefed up anti-tracking measures in its Firefox browser". (February 24, 2021)
  6. "The European Union may investigate Facebooks $1BN acquisition of customer service platform Kustomer after concerns were referred to it under EU merger rules". (April 6, 2021)
  7. "A German court thats considering Facebooks appeal against a pioneering pro-privacy order by the countrys competition authority to stop combining user data without consent has said it will refer questions to Europes top court". (March 24, 2021)
  8. "Facebooks self-regulatory Oversight Board (FOB) has delivered its first batch of decisions on contested content moderation decisions almost two months after picking its first cases". (January 28, 2021)
  9. "Confusion over an update to Facebook-owned chat platform WhatsApps terms and conditions has triggered an intervention by Italys data protection agency". (January 14, 2021)
  10. "A week after Facebook grabbed eyeballs globally by blocking news publishers and turning off news-sharing on its platform in Australia, the countrys parliament has approved legislation that makes it mandatory for platform giants like Facebook and Google to negotiate to remunerate local news p". (February 25, 2021)
  11. "Privacy concerns that have been driving app users to alternative chat apps like Signal and Telegram in recent weeks, since Facebook-owned WhatsApp announced a T&Cs change, appear to also be generating some uplift for end-to-end encrypted email providers". (January 14, 2021)
Posted on  , , , , , , ,