Wednesday

17th Aug 2022

Google in EU privacy row over Street View data

Search-engine Google is at the centre of an embarrassing data privacy row after French and British regulators demanded access to all Wi-Fi data collected for its Street View site.

The move came when Google's legal advisor Peter Fleischer admitted in a letter sent last week (27 July) to the UK information commissioner that personal data collected in 2008 and 2009 had not been destroyed.

Read and decide

Join EUobserver today

Become an expert on Europe

Get instant access to all articles — and 20 years of archives. 14-day free trial.

... or subscribe as a group

  • Google is under fire after it admitted keeping Street View data. (Photo: Google Earth)

In a statement released on Wednesday (1st August), the French CNIL confirmed that it had "asked Google to make available the data in question and to secure time to conduct all necessary investigations."

The search-engine had initially claimed to have deleted all personal data collected by its Street View cars but admitted that the company had "determined that we continue to have payload data from the UK and other countries."

Fleischer insisted that Google was ready to "delete the remaining UK data" adding that they were "prepared to arrange for you to review this data, or to destroy it."

CNIL has also fined Google €100,000 for retaining the data, which includes personal passwords and login details, online searches and email exchanges. For its part, the ICO said that the software giant faced a £500,000 fine for failing to meet its commitments.

Google uses cars to collect Wi-Fi data for its Street View service which is used for its Google Maps application allowing consumers to access detailed images of local sites.

The French regulator is already leading an investigation into Google's privacy policies, which were revised earlier this year in April, on behalf of the EU's Article 29 working group on data privacy. It is expected to report in September.

The incident also has implications for the ongoing negotiations on the EU data protection package.

Under the proposals tabled by Justice commissioner Viviane Reding in January, rules on the processing and use of data would be tightened, including a 'right to be forgotten' - giving people the right to have personal data deleted if there are no legitimate reasons to keep it.

It also aims to increase the level of harmonisation across the EU's 27 member states with firms answerable to national data supervisors.

In its legal opinion on the bills, the European data protection supervisor called on legislators to increase enforcement powers for national authorities and pan-EU co-ordination, voicing its concerns about differing national enforcement regimes.

The UK office has faced criticism from data privacy campaigners and MPs. In a press statement, Nick Pickles, director of the UK-based Big Brother Watch, complained that "the ICO is hampered by a woeful lack of powers and is forced to trust organisations to tell the truth."

He added that Google's behaviour emphasised the need to "demand a proper regulator with the powers and punishments to fully protect British people's privacy."

Under the new regime, companies flouting data protection rules could face fines of up to 2 percent of their annual turnover, potentially leaving the likes of Google open to multi-million-euro fines.

EU institutions take on Google over privacy regime

Google is under fire for its new privacy policy, which came into force on Thursday, with the French Data Protection Authority and the EU commission indicating that it falls foul of EU law.

Opinion

Google's collision course with member states

The regulators have issued so many warnings to Google, and the issues raised are so integral to how Europeans view their fundamental human rights, that it is difficult to see how the EU regulators can back down.

Opinion

The Digital Services Act — a case-study in keeping public in dark

Companies and lobby groups like Spotify, Google and International Federation of the Phonographic Industry (IFPI) were able to lobby member states using live knowledge of the trilogue discussions on content-ranking systems, advertising and liability for search engines.

Stakeholder

The CPDP conference wants multidisciplinary digital future

During the Computers, Privacy and Data Protection (CPDP) conference, many high-level discussions will touch upon the dynamics of decision-making in the design of new technologies, including the importance of inclusion, diversity, and ethics perspectives within these processes.

Stakeholders' Highlights

  1. Nordic Council of MinistersNordic prime ministers: “We will deepen co-operation on defence”
  2. EFBWW – EFBH – FETBBConstruction workers can check wages and working conditions in 36 countries
  3. Nordic Council of MinistersNordic and Canadian ministers join forces to combat harmful content online
  4. European Centre for Press and Media FreedomEuropean Anti-SLAPP Conference 2022
  5. Nordic Council of MinistersNordic ministers write to EU about new food labelling
  6. Nordic Council of MinistersEmerging journalists from the Nordics and Canada report the facts of the climate crisis

Latest News

  1. Germany rejects visa ban for Russian tourists
  2. Iran responds to EU's 'final text' on nuclear deal
  3. Model minority myths
  4. EU must make public who really owns its fishing fleets
  5. Germany needs to cut gas use by 20% to stave off winter crisis
  6. Europe's wildfire destruction set to hit new record
  7. How Putin and Erdoğan are making the West irrelevant
  8. Defying Russian bombs, Ukraine football starts 2022 season

Join EUobserver

Support quality EU news

Join us