FP StaffDec 13, 2022 13:44:13 IST
The top adviser to the French data protection authority CNIL’s sanction body recommended on Monday that Apple should be fined 6 million Euros. The CNIL is the Data Protection Authority for France.
Apple has been accused of knowingly violating EU’s data privacy laws. While Apple allowed owners to stop other tech companies like Google and Meta to collect information from them, Apple monopolised this data by collecting and using it themselves. Image Credit: AFP
CNIL’s sanction body is free to ignore the recommendations, but these typically carry a lot of weight regarding the watchdog’s final decision. Historically, the CNIL has paid heed to such recommendations.
Francois Pellegrini who headed this panel, made his recommendation after an investigation by the authority, which was triggered by a complaint filed last year by lobby group France Digitale, an organisation that defends the interests of the startup community in France and often targets American tech corporations for their anti-competitive behaviour in France.
In the complaint, the lobby, which represents the bulk of France’s digital entrepreneurs and venture capitalists, alleged that iPhone maker Apple’s former operating software, iOS 14, did not comply with EU privacy requirements.
France Digitale argued then that while iPhone owners were asked under iOS 14 whether they were ready to allow installed mobile apps to gather a key identifier used to define campaign ads and send targeted ads, default settings allowed Apple to carry its own targeted ad campaigns without clearly asking iPhone users for their prior consent.
In the complaint, the lobby, which represents the bulk of France’s digital entrepreneurs and venture capitalists, alleged that iPhone maker Apple’s former operating software, iOS 14, did not comply with EU privacy requirements.
France Digitale argued then that while iPhone owners were asked under iOS 14 whether they were ready to allow installed mobile apps to gather a key identifier used to define campaign ads and send targeted ads, default settings allowed Apple to carry its own targeted ad campaigns without clearly asking iPhone users for their prior consent.
Apple’s privacy updates, called App Tracking Transparency, give users the option to block apps from tracking activity across apps and websites owned by other companies.
In his remarks, Pellegrini said Apple’s previous operating system version iOS 14.6 failed to ask users properly for their prior consent for the collection of personal data, thus constituting a breach of privacy rules under the European Union’s ePrivacy directive.
He added that changes made under a subsequent version of Apple’s operating system, iOS 15, allowed for such prior consent.
Gary Davis, Apple’s head of privacy, contested the rapporteur’s conclusions at the hearing, saying the U.S. firm was committed to the protection of users’ privacy.
“The absence of any seriousness to the breach means that the amount of the fine should be decreased,” he said, requesting that the amount of any fine should not be made public.
