Facebook’s parent group Meta was fined two hefty fines totaling 390 million euros on Wednesday for violating the European data regulation (GDPR).
Ireland’s Data Protection Commission (DPC) said in a statement that Meta had breached “its transparency obligations” and relied on an incorrect legal basis “for the processing of personal data for advertising purposes”.
The privacy association Noyb, following the complaints against the group, filed on May 25, 2018, the date of entry into force of the GDPR, accused Meta of having reinterpreted the consent “as a simple civil law contract”, which does not allow to renounce targeted advertising.
Noyb welcomed this decision which will force Meta to implement “a consent option” for the use of its users’ personal data, failing which the company “will not be able to use your data for personalized advertising”.
According to the DPC, Meta has three months to “bring its data processing operations into compliance”.
The Irish Constable has already fined the Californian giant in September for 405 million euros for omissions in the treatment of minors’ data, and in November for the sum of 265 million euros for not having sufficiently protected the data of its users.