Fifth of websites, apps lack info on personal data policy

News Broadband Global 14 AUG 2013
Fifth of websites, apps lack info on personal data policy
French privacy regulator Cnil has announced a global operation to check the compliance of the most popular websites and mobile apps with personal data regulations. The Global Privacy Enforcement Network, which includes privacy regulators in 29 countries, found that a fifth of the sites and apps did not provide any information to users about how personal data is handled, despite collecting such data from users. Among the mobile apps, this increases to 50 percent. 

Among those that did provide such information, Cnil said the info was too general and often focused just on one aspect, such as the use of cookies. The regulator noted important information was often missing across all the sites and apps, such as how the personal data will be used, whether it will be passed on to third parties or the rights of the person submitting the data. Often the information is also buried in the site or app's general terms and conditions, making it difficult for users to find and understand. 

Cnil did find some sites with better practices, such as providing FAQs on their data policies and contacts for users to get more information. It noted that among the 250 French sites checked, only 10 percent were missing information on their collection of personal data. 

CNIL said it and the other regulators will be contacting the sites falling short of the law, known in France as the Law on Information Technology and Freedoms and based on the EU data protection directive. If they do not improve the information on personal data collection, they may face sanctions. 

The operation 'Internet Sweep Day' checked in total 2,180 sites and applications, including the most popular in each country. The GEPN includes most EU regulators, as well as their counterparts in the US, Switzerland, Ukraine, Korea, China, Israel, Mexico, Norway, New Zealand, Australia and Canada. 

Categories:

InternetMobile

Regions:

Global

Countries:

France

Tags:

Data services, Security, Regulations, IT - applications, Portals / social media, Advertising services

Related Articles

FRANCE 4 SEP 2015

Cnil studies kids sites' data collection, parental controls

French data protection agency Cnil looked at 54 websites of different types used by children and teenagers as part of Internet Sweep Day, finding that 87 percent collected personal data (vs a 67% international average) and only 39 percent of the sites offered users a simple way to disactivate accounts. Another key finding was the fact that 62 percent of the sites offer no parental control mechanism, such as sending e-mails to inform parents that their children's data will be collected and asking for their a

UNITED KINGDOM 13 MAY 2015

ICO to probe data collection by 50 children's websites, apps

The UK Information Commissioner's Office (ICO) has announced that it will review 50 children's websites and apps, looking at what information they collect from children, how that is explained, and what parental permission is sought. The ICO said the websites and apps will include those specifically targeted at children, as well as those frequently used by children. The study is part of a wider review involving 28 other data privacy bodies around the world. The work is coordinated by the Global Privacy Enfor

FRANCE 5 FEB 2014

Falque-Pierrotin wins second 5-year term as head of CNIL

France has reappointed Isabelle Falque-Pierrotin as the president of civil liberties authority CNIL for another 5 years, reports Les Echos. Starting her career with the internet rights forum, she joined the CNIL as vice president in 2004 and became president 7 years later. The new vice presidents and deputy vice presidents are Eric Peres and Marie-France Mazars. As president, Falque-Pierrotin presides over a college of 17 commissioners, including four legislators, two members of economic, social and environ

FRANCE 18 DEC 2013

CNIL publishes best practice recommendations for cookies

French data protection agency CNIL has published recommendations on best practice in the use of cookies by website administrators and pedagogical tools for internet users. The recommendations were made after a substantive exchange of views with the main players in online advertising, who notably use cookies for targeted advertising and personalised services. Regulations in force require organisations to inform internet users about their use of cookies and internet users must give their explicit consent for

GLOBAL 18 SEP 2013

Google develops AdID to replace cookies - report

Google is developing an anonymous identifier for advertising, or AdID, that would replace third-party cookies as the way advertisers track people's internet browsing activity for marketing purposes, a person familiar with the plan told USA Today. The AdID would be transmitted to advertisers and ad networks that have agreed to basic guidelines, giving consumers more privacy and control over how they browse the web. Google plans to outline the proposal to industry participants, government bodies and consumer

UNITED STATES 21 AUG 2013

IT groups suggest changes to govt's private data collection

Leading technology trade associations are urging the White House and Congress to take new steps to reform government collection of private data, steps that the groups believe will better protect civil liberties while keeping doors open to innovation in the digital economy. In their letter to the White House, the BSA, Software Alliance, the Computer & Communications Industry Association (CCIA), the IT Industry Council (ITI), the Internet Association, SIIA, Software & Information Industry Association, and Tec

EUROPE 20 JUN 2013

Google gets 3 months to comply with EU data privacy rules

French data protection agency Cnil has given Google three months to align its policies with French private data protection legislation or face fines of EUR 150,000 to 300,000 a day. The formal notice stems from a process started jointly by the data protection authorities of the 27 EU member states in October 2012 over the company's privacy policy. French regulator Cnil said in April that there had been no signs of change at Google. The UK, Netherlands, Germany, Italy and Spain will begin their own procedure

FRANCE 7 MAY 2013

Cnil audits website information on Internet Sweep Day

French data protection agency Cnil is one of around 20 counterparts around the world that assessed 4,000 websites for Internet Sweep Day on 6 May. As a member of the Global Privacy Enforcement Network, Cnil examined 250 of the biggest websites in France to see if internet users are correctly informed about various points. Are the websites informing users of which of their data they are collecting, to what end, whether they are shared with third parties, and whether they can ask for their data to not be shar

EUROPE 2 APR 2013

Google faces privacy action in six European countries

The data protection agencies of France, Germany, Italy, the Netherlands, Spain and the UK have launched coordinated actions against Google. The move follows the Article 29 Working Party of EU regulators' investigation into Google's privacy policy, conducted between March and October 2012. The resulting report gave Google four months to bring its activities in line with local privacy regulations. The six countries' authorities held a meeting on 19 March with Google to assess the company's progress, but Frenc

EUROPE 20 FEB 2013

EC plans unified European data protection regulator

EC justice commissioner Viviane Reding told the press that she was committed to the creation of a European single regulator for data protection, capable of inflicting and threatening to inflict heavy fines on internet companies on behalf of member states. These could be as high as 2 percent of turnover. When asked to give an example, Reding cited Google as "textbook case". Based on Google's EUR turnover in 2012, it could be fined EUR 1 billion. The reorganisation of data protection in the EU could come into

Just In

19 DEC 16:42

SLT-Mobitel launches 5G network in Sri Lanka

19 DEC 16:19

Dialog Axiata launches 5G network, connects 1.5 million subscribers

19 DEC 15:56

UK govt to ban AI-enabled nudification apps to protect women, girls

19 DEC 15:42

3 UK launches last-minute Christmas sale

Commentary

13:56

Video market set for slower growth ahead

11:38

Netflix buys Warner Bros to deepen content catalogue

11:11

KPN's mixed performance in Q3 raises questions for strategy day

15:26

Stock markets breaking records but what happened to Odido's IPO plans?

Background

01:04

The week in telecom: Wi-Fi bolt-ons take off to boost broadband growth, video market works on consolidation

01:39

The week in telecom: Netflix wins bidding for Warner Bros, Apple poaches new execs, Samsung debuts trifold

13:51

Proximus vs. Telenet: Proximus performs better in Q3 while Telenet uses up cash

14:16

Proximus Domestic still struggling with low margins

Complete profile

Before downloading the whitepaper, we would like to ask you to complete your profile with company and position. After confirming you will receive the white paper.