South Korea imposed a $15 million effective on Meta, Fb’s dad or mum firm, for the unauthorised assortment and sharing of delicate person information, equivalent to political affiliation and sexual orientation.
On Tuesday, South Korea’s privateness watchdog fined social media large Meta 21.6 billion gained ($15 million) for unlawfully amassing delicate private information from Fb customers, together with data on their political opinions and sexual orientation, and sharing it with 1000’s of advertisers.
That is the latest penalty imposed on Meta by South Korean authorities, who’ve intensified their oversight of the corporate’s practices concerning defending non-public data.
Following a four-year inquiry, the Private Data Safety Fee of South Korea concluded that Meta had unlawfully gathered delicate private data, equivalent to non secular affiliation, political beliefs, and same-sex partnership standing, from roughly 980,000 Fb customers between July 2018 and March 2022.
The corporate leaked the information to roughly 4,000 advertisers.
South Korea’s privateness legislation imposes strict limits on the dealing with of delicate private data, together with non secular beliefs, political opinions, and sexual orientation, requiring specific consent earlier than any processing or use.
The fee indicated that Meta accrued delicate data by scrutinising the pages that Fb customers favoured and the commercials they engaged with.
Meta labeled commercials to discern customers with pursuits specifically themes, equivalent to particular religions, same-sex and transgender issues, and points associated to North Korean escapees, as defined by Lee Eun Jung, a director on the fee who spearheaded the investigation into Meta.
“Whereas Meta gathered this delicate data and employed it for individualised providers, they supplied solely ambiguous references to this utilisation of their information coverage and didn’t safe particular consent,” Lee said.
Lee additional asserted that Meta compromised the privateness of Fb customers by neglecting to implement elementary safety measures, such because the elimination or blocking of inactive pages. Consequently, hackers may utilise inactive pages to manufacture identities and solicit password resets for the accounts of different Fb customers. Meta authorised these requests with out sufficient verification, leading to information breaches impacting a minimum of 10 South Korean Fb customers.
In September, European regulators imposed fines exceeding $100 million on Meta for a 2019 safety lapse that resulted within the non permanent publicity of person passwords in an unencrypted format.
Meta’s South Korean workplace provided a noncommittal response to the fee’s determination, promising to “rigorously evaluate” it with out offering additional particulars.
In 2022, the fee imposed fines totalling 100 billion gained ($72 million) on Google and Meta for monitoring customers’ on-line behaviour with out authorisation and utilising their information for focused commercials, constituting probably the most substantial penalties ever levied in South Korea for breaches of privateness legislation.
The fee said that the 2 corporations had not explicitly knowledgeable customers or secured their consent to gather information about them whereas they had been utilising different web sites or providers past their platforms. The fee directed the businesses to determine an “simple and clear” consent course of to empower people with larger management over the sharing of knowledge regarding their on-line actions.
In 2020, the fee imposed a effective of 6.7 billion gained ($4.8 million) on Meta for disclosing private details about its customers to 3rd events with out acquiring their authorisation.