Brave lawsuit against Google for GDPR violations

Google is being blamed by the Brave development team browser that it violates one of the principles of the General Regulations for the (GDPR) σχετική με την απαίτηση από τις εταιρείες να αναφέρουν ένα συγκεκριμένο σκοπό για τη συλλογή και επεξεργασία των προσωπικών δεδομένων.

In a complaint [PDF] filed with the Irish Data Protection Commission (DPC), the Brave browser based on argues that Google's privacy policy violates the purpose limitation principle of GDPR as "does not explicitly specify the purposes for which the data are collected and processed".

Brave

The principle of delimitation of the purpose of the GDPR requires all organizations that collect and process personal data to state precisely their purpose to consumers.

Google's privacy policy is "indescribably vague and non-specific," according to Brave's policy chief Johnny Ryan, who said that Google's reasons for collecting data are too general for the way information is used, such as for the "development of new services.".

Ryan also claims that while Google provides tailored ads to users based on their interests, it gives very limited information about the processing the data undergoes, and why users see a particular .

The complaint also includes a , called Inside the Black Box [PDF]. The research separates Google's processing purposes for collecting personal data from websites, applications, and operating systems. The data comes from many different sources, and is often used for different purposes, such as analytics, or advertising.

Referring to the study, Ryan claims that Google's intentions "are so vague that they have no meaning or limitation; the result is an absolute freedom that violates the principles of the GDPR."

"Brave's new data reveals that Google again our personal data between businesses and its products in surprising ways that violate the principle of purpose limitation. Google's internal data is free for all to see and violates the GDPR."

The Brave development team asked Google to provide a complete and sufficiently specific list of the purposes for which the company processes personal data, as well as the relevant legal bases for each purpose. Google has reportedly repeatedly refused to provide a substantive explanation for the data processing purposes to the Brave team.

The DPC is already investigating how Google processes and manages its users' data. With this investigation, the Irish regulator is seeking to determine whether or not the company has a legal basis for processing user location data and whether these procedures are sufficiently transparent to the GDPR.

iGuRu.gr The Best Technology Site in Greecefgns

every publication, directly to your inbox

Join the 2.082 registrants.

Written by giorgos

George still wonders what he's doing here ...

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).