Regulators and enforcement bodies

National, regional, international

Long Read

Our 2018 complaint against French AdTech company Criteo led to a €40 million fine for failing to ensure that data subjects had provided their consent to processing, to sufficiently inform them and to enable them to exercise their rights.
Following on from our initial reaction, we answer some questions about the decision below.

Press release

Suite à une plainte de Privacy International déposée en 2018, la société française d'AdTech Criteo s'est vue infliger une amende de 40 millions d'euros pour avoir failli à s'assurer que les personnes concernées avaient donné leur consentement au traitement de leurs données, ainsi que pour le manque d'information et de transparence qui leur était fourni par Criteo, et l'impossibilité d'exercer pleinement leurs droits.

Press release

Following a 2018 complaint by Privacy International, French AdTech company Criteo was fined €40 million for failing to ensure that data subjects had provided their consent to processing, failing to sufficiently inform them and to enable them to exercise their rights.

Report

As EU policymakers are about to adopt new laws to empower consumers and increase cyber-resilience, PI's research shows that the existing practices of device manufacturers around software and security updates fail to meet the expectations of the vast majority of consumers.

Report

PI’s report on end-to-end encryption (E2EE) analyses and defends expanding the use of E2EE to protect our communications.

Report

This report seeks to map the attitudes and perspectives of competition regulators and civil society across the world with regard to personal data and competition. Specifically, it explores the approach certain regulators have adopted by incorporating ‘personal data’ parameters in their competitive assessments, as well as the challenges faced by them in doing so. Furthermore, the report seeks to identify effective advocacy opportunities for civil society organisations (CSOs), by discussing the various tools they can use to support the regulators’ programmatic work while defending consumers’ well-being in the digital environment.

Advocacy

Privacy International and the Canadian Civil Liberties Association respond to the Office of the Privacy Commissioner of Canada's consultation on its draft privacy guidance on facial recognition for police agencies

News & Analysis

Unwanted Witness’ research into motorcycle ride sharing app Safeboda, highlighting their failures to comply with data protection law, leads data protection regulator to take enforcement action.

Advocacy

Following PI's submission in March 2020, the Australian regulator has decided to conduct an in-depth investigation into the Google/Fitbit merger. We have responded to some of their concerns.

Video

Immediately after the UK general election in December 2019, we worked with ORG to poll people about ‘data-driven political campaigning’. We found that most people oppose the use of targeted ads during elections, and oppose election spending when the source of funding is unknown.

Press release


As Google notifies the European Commission of its proposed acquisition of the health and fitness tracker Fitbit, Privacy International calls for the merger to be blocked because of concerns over Google’s growing digital dominance.

Report

The UK Chief Surveillance Commissioners have repeatedly raised concerns about local authorities using the internet as a surveillance tool and suggested they conduct an internal audit of the use of social media sites. Privacy International sent Freedom of Information requests to local authorities in the UK to dig deeper into what's going on.

Advocacy

In February 2020, PI submitted comments on the UK Competition and Markets Authority's (CMA) interim report into online platforms and digital advertising.

Advocacy

Privacy International submits comments to the FATF consultation on its draft guidance on digital identity.