EDPO (European Data Protection Office)’s Post

‼️ A significant reminder for all companies processing personal data worldwide: It's crucial to stay compliant not only with the GDPR and US regulations but also to investigate and adhere to the regulations of other regions when offering services there. Ensuring data protection and respecting consumer rights is a global responsibility. #DataPrivacy #GlobalCompliance #ConsumerRights #DataProtection

Data protection has expanded around the globe, with a variety of regimes and a complex number of requirements. Navigating privacy and data protection rules requires a robust and comprehensive system allowing professional to react effectively to their obligations. Is your organisation ready for this challenge, or are you waiting for fines and administrative procedures to set the path? #dataprotectioniscoming

🚨 **Data Protection Laws in Focus: Ensuring Compliance in Cross-Border Data Flows** 🌍📊 In a recent decision, Meta, the parent company of Facebook and WhatsApp, has been fined $220 million by Nigerian authorities for repeated breaches of consumer and data protection laws. This action underscores the critical importance of adhering to local data protection regulations, especially for foreign companies operating in multiple jurisdictions. Nigeria's Federal Competition and Consumer Protection Commission (FCCPC), in collaboration with the Nigeria Data Protection Commission, conducted an extensive investigation from May 2021 to December 2023. The findings revealed Meta's invasive practices against Nigerian consumers, including unauthorized cross-border data storage. These practices not only violated local laws but also highlighted the broader issue of how data is handled across borders. Meta's actions included abuse of market dominance and discriminatory practices, depriving Nigerians of their right to control their personal data. This case mirrors similar challenges Meta has faced globally, such as the $1.3 billion fine by the European Union for failing to protect EU citizens' data. The actions by Nigeria's FCCPC serve as a reminder of the growing global emphasis on data protection. As we navigate the digital age, it's crucial for businesses to align with local laws and uphold the highest standards of consumer rights and data privacy. #DataProtection #CrossBorderData #ConsumerRights #DataPrivacy #GlobalCompliance #TechNews #LegalUpdates https://lnkd.in/gdS7tTMJ

++ FCCPC Nigeria Fines Meta $220M for Violating Nigerian Data Protection Laws ++ In a decisive move to protect Nigerian consumers’ data privacy, the Federal Competition and Consumer Protection Commission (FCCPC) has issued a Final Order against Meta Platforms, Inc. and WhatsApp LLC. Following a comprehensive 38-month investigation, the Commission, in collaboration with the Nigeria Data Protection Commission (NDPC), concluded that Meta Parties engaged in numerous violations of the Federal Competition and Consumer Protection Act (FCCPA) 2018 and Nigeria Data Protection Regulation (NDPR) 2019. The investigation, initiated in May 2021, was driven by substantial evidence suggesting Meta Parties’ conduct infringed on various provisions of the FCCPA and NDPR. Despite multiple engagements and opportunities to respond, Meta Platforms and WhatsApp were found guilty of several abusive practices against Nigerian data subjects, including unauthorized data appropriation, discriminatory practices, and abuse of dominant market position. #techafricanews #africa #nigeria #data #technology #appropration #conduct #evidence #protection #regulation

https://lnkd.in/eBfGHtJT Nigeria fines Meta Platforms $220 million for violating consumer data protection and privacy laws. According to the report, the Federal Competition and Consumer Protection Commission (FCCPC) investigation which spanned over 38 months found that Meta: - Appropriated user data without consent - Abused market dominance with exploitative privacy policies - Discriminated against Nigerian users compared to other jurisdictions This would be one of the biggest fines under the data protection regime in Africa and highlights the importance of privacy and data protection. #dataprivacy #consumerprotection #data protection

💥 Meta Accused Of Running A Massive Data Processing Business; Violating the GDPR European consumer rights groups have accused Meta of carrying out a 😱 "massive" and "illegal" operation to collect the data of hundreds of millions of users in the region. The accusation comes from the European Consumer Organisation (BEUC) - a group of 45 consumer rights organisations. Of these, 8 groups have filed a complaint against the company with their respective national data protection authorities: Spain, France, Greece and Denmark. Slovenia, Slovakia, Norway and the Czech Republic… read more in TechReport.👇 --- #SypherPrivacyTalks Stay tuned for more:📌 follow the Sypher Solutions company page. We'll keep you updated on #dataprotection, #privacy, #privacymanagement, #GDPR, #GDPRcompliance, #DPO, #cookies, #consent.

FCCPC fine on WhatsApp LLC and Meta Platform Inc: Problem of Enforcement? With respect to foreign or non-resident companies, the enforcement of fines is always a concern. To the best of this author's knowledge, neither WhatsApp nor its parent company Meta is a registered entity in Nigeria. This begs the question of the enforcement of the $220 million fine issued against WhatsApp LLC and Meta Platform Inc. by the FCCPC. In my article 'Extraterritorial Enforcement Problems of Section 2 of The Nigeria Data Protection Act, 2023' (https://lnkd.in/deqtWHK2), I considered this point and suggested that even in the absence of a local presence, the global reputation of a company (especially the Tech Giants) compels them to comply with national laws and directives of local regulatory authorities as this undoubtedly has an impact on their global image. Although the Order and Notice did not specify how the Commission arrived at its fine of $220 million, this can however be inferred from its powers under the FCCPC Administrative Penalties Regulations 2020. Under Schedule 1 of the Regulations, the base fine for the abuse of a dominant position under Section 72 &73 (3) of the FCCPC Act is 1% of Annual Turnover of the entity involved. It is worthy of note that the fine of $220 million is the highest fine in the history of data privacy fines in Nigeria and currently sits in the top 10 highest data privacy fines in the world. This huge fine underscores the importance of firms adhering strictly to data protection and privacy laws. Since the turn of the century and with increased technological advancement, digital rights such as data privacy rights are enjoying more protection and businesses must put in place measures to ensure that the data privacy rights of their customers (data subjects) are processed in accordance with the relevant laws and regulations.

It’s been a little over five years since the GDPR came into effect and fines keep amassing — especially for social media platforms. New research by Dutch VPN company Surfshark has found that, since 2018, five of the most popular social media (Facebook, Instagram, TikTok, Whatsapp, and X/Twitter) have been fined over €2.9bn for violating the EU’s data protection law. Facebook alone accounts for nearly 60% of the total amount, with €1.7bn in penalties. Adding to Zuckerberg’s woes, Meta’s platforms combined have reached €2.5bn. TikTok has received the third highest amount in fines, at €360mn, while X (formerly Twitter) has…This story continues at The Next Web

🚀 Meta X Nigeria FCCPC 🚀 This is a good reference for exploring the intersection of privacy compliance with economic realities in practice🌍. A simple approach using 🔪Ockham's razor 🔪principle is to assume that Meta's threat to exit the Nigerian market indicates their desire not to comply with the FCCPA and NDPR. This leaves a huge question of prioritization - Should the FCCPC stand its ground and enforce compliance or should they take a step back and consider the economic implications of such enforcement? #dataprivacy #privacy #Meta #Whatsapp #GDPR

The Nigerian Federal Competition and Consumer Protection Commission (FCCPC) has imposed a $220 million fine on Meta Platforms, the parent company of Facebook and Instagram, for discriminatory practices and mishandling of Nigerian consumers' data. This penalty comes after a 38-month investigation that uncovered significant violations, including unauthorized data sharing, abuse of market dominance, and unfair treatment of Nigerian users compared to their European counterparts. Despite Meta's ongoing engagement with the FCCPC, they failed to meet critical compliance requirements under Nigerian law. The investigation also found that WhatsApp’s 2021 privacy policy forced Nigerian users into compliance without securing proper consent, violating the Nigeria Data Protection Regulation (NDPR) and the Federal Competition and Consumer Protection Act (FCCPA). Even with the new Data Protection Act of 2023 in place, Meta’s conduct showed a blatant disregard for local regulations. In response to the fine, Meta, particularly WhatsApp, has reportedly threatened to exit the Nigerian market—a move that seems to exploit the lack of alternatives for Nigerian users. However, laws must be obeyed, and ignorance is no excuse. Meta’s actions highlight the importance of protecting consumer data rights, which cannot and should not be overlooked. #dataprivacy #NDPR #GDPR #Privacycompliance