Tuesday

10th Dec 2019

Data breach affected 2.7 million people in EU, says Facebook

  • Facebook chief operating officer Sheryl Sandberg (l) on a previous visit to EU commissioner Vera Jourova, January 2018 (Photo: European Commission)

US social media giant Facebook has told the European Commission that information about up to 2.7 million people in the EU may have been compromised, in the scandal around UK consulting firm Cambridge Analytica.

It is the first time a full figure for the entire 28 EU member states has emerged.

Read and decide

Join EUobserver today

Support quality EU news

Get instant access to all articles — and 20 years of archives. 30-day free trial.

... or join as a group

  • Around half of the EU's population is a Facebook user (Photo: Eduardo Woo)

"Facebook confirmed to us that the data of overall up to 2.7 million Europeans – or people in the EU, to be more precise – may have been improperly shared with Cambridge Analytica," commission spokesman Christian Wigand told press on Friday (6 April).

Earlier this week, Facebook gave an estimate of the worldwide maximum number of affected accounts, with CEO Mark Zuckerberg stressing in a conference call that the actual number may be lower, but not higher.

Facebook said in a blog post published Wednesday that of the 87 million people affected, over 80 percent were Americans.

The blog post only revealed the ten most affected countries, including the UK, where data from 1,079,031 people was said to be possibly compromised. Cambridge Analytica has been accused of being involved in duping UK voters into voting leave in the 2016 referendum on EU membership.

The US company did inform national media in the EU of the number of affected people there – such as a maximum of 309,815 users in Germany and up to 214,123 in Italy – but had not given an overall figure for all 28 EU member states.

Facebook gave the commission the figure in a letter sent on Thursday evening, in response to one sent by EU consumer affairs commissioner Vera Jourova last week.

In the letter, the company also told the EU what steps it has taken to improve security of its service.

"We will study the letter in more detail but it is already clear that this will need further follow-up discussions with Facebook on implemented changes, also in the context of the … upcoming new European data protection rules, and the broader questions on the democratic process," said commission spokesman Wigand.

On 25 May, the far-reaching European general data protection regulation will come into force, giving new privacy rights to every EU citizen.

Wigand added that Jourova has an appointment for a phone call with Facebook's chief operating officer Sheryl Sandberg (who wrote the letter) next week, "to continue this discussion".

Also next week, the EU's national data protection authorities will meet to discuss the breach.

While there are common EU rules on data protection, enforcement is still for a large part done at national level.

"A strong coordinated approach of the EU data protection authorities in the investigations is now crucial," said Wigand.

According to the Internet World Stats website, there were around 250 million Facebook users in the EU in mid-2017 – around half of the entire population.

In the worst case scenario that all 2.7 million identified by Facebook as potentially affected, were indeed affected, that would amount to one percent of EU users.

Germany pledges 'strict' laws after Facebook data breach

Germany aims to pass new laws on social media after revelations that Facebook data was used to manipulate US voters, while the EU Commission is asking the company to give information about data breaches.

EU data chiefs rally behind UK over Cambridge Analytica

EU leaders at a Brussels summit demand social networks and digital platforms guarantee transparency and privacy. Their call comes amid growing backlash against Facebook and Cambridge Analytica over voter manipulation.

Facebook promises more privacy ahead of new EU rules

Speaking in Brussels, Sheryl Sandberg, Facebook's chief operating officer, says the social media giant has "not done enough to stop the abuse of our technology." Her admission comes with new plans to wrestle with "bad content".

News in Brief

  1. EU survey: climate change must be parliament's priority
  2. Zahradil resigns as rapporteur on EU-Vietnam trade deal
  3. Russia plans 'Arctic Air Defence" with S-400 missiles
  4. Belgium: King does another round of consultations
  5. Thousands protest Orban's theatre clampdown
  6. Russia and Ukraine agree ceasefire by new year
  7. US deploys biggest army to Europe in years for training
  8. New 100km/h speed limit on Brussels ring road planned

Stakeholders' Highlights

  1. Nordic Council of Ministers40 years of experience have proven its point: Sustainable financing actually works
  2. Nordic Council of MinistersNordic and Baltic ministers paving the way for 5G in the region
  3. Nordic Council of MinistersEarmarked paternity leave – an effective way to change norms
  4. Nordic Council of MinistersNordic Climate Action Weeks in December
  5. UNESDAUNESDA welcomes Nicholas Hodac as new Director General
  6. Nordic Council of MinistersBrussels welcomes Nordic culture

Stakeholders' Highlights

  1. UNESDAUNESDA appoints Nicholas Hodac as Director General
  2. UNESDASoft drinks industry co-signs Circular Plastics Alliance Declaration
  3. FEANIEngineers Europe Advisory Group: Building the engineers of the future
  4. Nordic Council of MinistersNew programme studies infectious diseases and antibiotic resistance
  5. UNESDAUNESDA reduces added sugars 11.9% between 2015-2017
  6. International Partnership for Human RightsEU-Uzbekistan Human Rights Dialogue: EU to raise key fundamental rights issues

Join EUobserver

Support quality EU news

Join us