A group that campaigns for data protection rights in Europe says it's filed legal complaints against Google[1], Facebook[2], Instagram[3], and WhatsApp[4] over the way they obtain users' consent under new EU privacy rules - General Data Protection Regulation (GDPR[5]). Starting Friday, companies that collect or process the personal information of EU residents must comply with new rules that protect the privacy of people's data.
The group NOYB.EU - which stands for "none of your business" - claims its action could force the US Internet giants to pay up to EUR 7 billion ($8.2 billion). In a statement Friday, the group argued that the companies are making users' consent to their new terms of service a requirement if they want to continue using the service. Those who object have to delete their account.
Max Schrems[6], a veteran of legal fights against Facebook and chair of the privacy group, said this amounts to "forced consent," prohibited by the EU's GDPR rules.
The rollout of the General Data Protection Regulation has been welcomed but is also causing confusion. Companies are trying to understand what level of protection different data needs, whether this could force them to change the way they do business and innovate, and how to manage the EU's 28 national data regulators, who enforce the law.
That uncertainty, together with stiff penalties for violating the law, has convinced Internet-based businesses such as Unroll.me, an inbox management firm, and gaming company Ragnarok Online to block EU users from their sites. U.S. retailer Pottery Barn said it would no longer ship to EU addresses.
In Finland, the government says it has been contacted by households asking whether...