South Korea imposed a $15 million high quality on Meta, Fb’s dad or mum firm, for the unauthorised assortment and sharing of delicate person information, comparable to political affiliation and sexual orientation.
On Tuesday, South Korea’s privateness watchdog fined social media large Meta 21.6 billion received ($15 million) for unlawfully amassing delicate private information from Fb customers, together with info on their political beliefs and sexual orientation, and sharing it with 1000’s of advertisers.
That is the newest penalty imposed on Meta by South Korean authorities, who’ve intensified their oversight of the corporate’s practices concerning defending non-public info.
Following a four-year inquiry, the Private Info Safety Fee of South Korea concluded that Meta had unlawfully gathered delicate private info, comparable to spiritual affiliation, political beliefs, and same-sex partnership standing, from roughly 980,000 Fb customers between July 2018 and March 2022.
The corporate leaked the info to roughly 4,000 advertisers.
South Korea’s privateness regulation imposes strict limits on the dealing with of delicate private info, together with spiritual beliefs, political beliefs, and sexual orientation, requiring express consent earlier than any processing or use.
The fee indicated that Meta accrued delicate info by scrutinising the pages that Fb customers favoured and the ads they engaged with.
Meta categorized ads to discern customers with pursuits particularly themes, comparable to particular religions, same-sex and transgender issues, and points associated to North Korean escapees, as defined by Lee Eun Jung, a director on the fee who spearheaded the investigation into Meta.
“Whereas Meta gathered this delicate info and employed it for individualised companies, they offered solely ambiguous references to this utilisation of their information coverage and didn’t safe particular consent,” Lee said.
Lee additional asserted that Meta compromised the privateness of Fb customers by neglecting to implement basic safety measures, such because the elimination or blocking of inactive pages. Consequently, hackers might utilise inactive pages to manufacture identities and solicit password resets for the accounts of different Fb customers. Meta authorised these requests with out sufficient verification, leading to information breaches impacting not less than 10 South Korean Fb customers.
In September, European regulators imposed fines exceeding $100 million on Meta for a 2019 safety lapse that resulted within the short-term publicity of person passwords in an unencrypted format.
Meta’s South Korean workplace provided a noncommittal response to the fee’s resolution, promising to “rigorously evaluation” it with out offering additional particulars.
In 2022, the fee imposed fines totalling 100 billion received ($72 million) on Google and Meta for monitoring customers’ on-line behaviour with out authorisation and utilising their information for focused ads, constituting probably the most substantial penalties ever levied in South Korea for breaches of privateness regulation.
The fee said that the 2 firms had not explicitly knowledgeable customers or secured their consent to gather information about them whereas they have been utilising different web sites or companies past their platforms. The fee directed the businesses to determine an “straightforward and clear” consent course of to empower people with higher management over the sharing of knowledge regarding their on-line actions.
In 2020, the fee imposed a high quality of 6.7 billion received ($4.8 million) on Meta for disclosing private details about its customers to 3rd events with out acquiring their authorisation.
Associated