Meta Platforms Inc. – Complaint Upheld (Austria, 2023)
Austria's data protection authority found that Meta transferred personal data to the US without proper consent when users visited a website using Facebook tools. This matters because it highlights the importance of ensuring data transfers comply with GDPR rules, especially after the Schrems II decision. Although no fine was imposed, the ruling emphasizes the need for businesses to review their data transfer practices.
What happened
Meta transferred personal data to the US without user consent when users accessed a website using Facebook tools.
Who was affected
Website visitors who accessed a site using Facebook's Login and Pixel tools, resulting in their data being sent to the US.
What the authority found
The Austrian authority ruled that Meta's data transfers to the US lacked a valid legal basis, violating GDPR's data transfer rules.
Why this matters
This decision underscores the scrutiny on data transfers to the US post-Schrems II and the need for businesses to ensure compliance with GDPR. Companies using Facebook tools should reassess their data transfer mechanisms to avoid similar issues.
GDPR Articles Cited
Meta Platforms was involved in unlawful data transfers to the US via tracking tools like Facebook Pixel without proper consent.
Outcome
Complaint Upheld
A data subject complaint that was upheld by the DPA.
Violations (1)
Third-party tracking cookies or scripts are loaded without obtaining prior user consent.
Art. 13, 14 GDPR
Related Enforcement Actions (0)
No other enforcement actions found for Meta Platforms Inc. in AT
This is the only recorded action for this entity in this jurisdiction.
Similar Cases
Enforcement actions with similar violations
Details
About this data
Cite as: Cookie Fines. Meta Platforms Inc. - Austria (2023). Retrieved from cookiefines.eu
Last updated: