SEARCH, ADVERTISING AND WEB FIRM Google has been fined €900,000 by the Spanish Data Protection Agency and been told to fall in line with local rules.
According to the Agencia Española de Protección de Datos (AEPD) Google is backwards at coming forwards when explaining what it sees in customer browsing and what it does with that information.
It found that Google runs roughshod over local users' data and treats it in a way that could be considered illegal. The AEPD found that even casual visitors to its pages – people who aren't logged into Google services – were also affected.
"The AEPD verified that Google does not give users enough information about what data they collect and for what purposes uses them, that Google combines those data gathered through various services, keeps them for an indefinite time and makes difficult the exercise of the rights of the citizens".
Google has broken three parts of Spanish law, it said, and will be fined €300,000 for each incident. The Spanish DPA called its practices a "serious violation" of data protection law.
"The Agency considers that Google seriously violates the right to the protection of personal data laid down in article 18 of the Spanish Constitution and regulated in the LOPD [Organic Law of the Protection of Personal Data]"
Google, which has been similarly challenged in France and the UK, said that it has worked with the agency and will consider its report and its response carefully.
OK Google, how do we create a stable society from this constitutional crisis?
Robo-cars on the rise
790,000 personal messages also leaked in SQL-injection hack
Build delivers fixes for Action Centre and Live Tile interface