Apple targeted by privacy campaigner who took on Facebook

    Noyb, a group founded by privacy activist Max Schrems, is accusing Apple of unlawfully installing so-called identification for advertisers on its devices.

    | Updated on: Nov 18 2020, 05:00 IST
    Apple Store.
    Apple Store. (REUTERS)
    Apple Store.
    Apple Store. (REUTERS)

    Apple Inc.'s ad tracking is the target of two complaints to Spanish and German authorities by a privacy advocate whose earlier legal battles are forcing Facebook Inc. to change the way it transfers data.

    Noyb, a group founded by privacy activist Max Schrems, is accusing Apple of unlawfully installing so-called identification for advertisers on its devices. The service helps Apple and apps track users' behavior and their consumption preferences without their consent, the group said.

    “With our complaints we want to enforce a simple principle: trackers are illegal, unless a user freely consents,” Noyb lawyer Stefano Rossetti said in a statement on Monday. “Smartphones are the most intimate device for most people and they must be tracker-free by default.”

    Also read: Apple supplier CN Innovations mulls $1 billion unit sale

    Schrems made a name for himself as a law student by taking on Facebook over the safety of people's data when it was shipped to the U.S. He won a landmark European Union court ruling in 2015 and his complaints led to a second key judgment in July that has forced regulators on both sides of Atlantic to rethink data transfer rules. The EU's revamped data protection rules in 2018 opened the door to mass lawsuits, which led to the creation of Noyb and a promise by Schrems to “look for the bigger cases” with the biggest impact.

    Rossetti said the complaints aren't based on the EU's General Data Protection Regulation, or GDPR, which gives regulators the power to impose hefty fines. The issues raised won't need the involvement of the data protection authority in Ireland, where Apple has its main EU base.

    “The action refers to only German and Spanish users” who complained about Apple, Rossetti said in an email. Still, he said the effects of any decision could extend beyond Germany and Spain and “it would be difficult for the company to continue doing with millions” of people “what was declared illegal for two” countries.

    Also read: Apple's new iPad with mini-LED tech will come by the first half of 2021

    Apple said Noyb's claims are “factually inaccurate” and that it looks forward to “making that clear to privacy regulators should they examine the complaint.”

    “Apple does not access or use the IDFA on a user's device for any purpose,” the company added in a statement. “Our aim is always to protect the privacy of our users and our latest software release, iOS 14, is giving users even greater control over whether or not they want to allow apps to track them by linking their information with data from third parties for the purpose of advertising, or sharing their information with data brokers.”

    The company also said that its “practices comply with European law and support and advance the aims of the GDPR and the ePrivacy Directive, which is to give people full control over their data.”

    App developers have historically used IDFA to help target users with ads and track the performance of ads across different devices. The iPhone maker will require app developers from early next year to show a warning label to users before collecting IDFA info on iOS 14, and will also require that users opt in to sharing it. Those changes have triggered an antitrust complaint from French advertisers who say it could make their revenue plummet.

    Noyb in May also took aim at Google in a complaint, accusing the U.S. tech giant of tracking users of Android phones through a unique ID that allowed the firm and third parties to monitor people's behavior. The Irish Data Protection Commission, which is also the lead EU regulator for Google on privacy matters, in February opened a probe into Google's processing of location data.

    The latest complaints by Noyb are based on an old EU law regulating firms' use of cookies and other tracking devices. They are not based on GDPR, which forces EU regulators to cooperate on probes where the alleged violations had a bloc-wide effect.

    They “do not trigger the cooperation mechanism” and “we are trying to avoid endless procedures,” Rossetti said.

    Written by Aoife White and Stephanie Bodoni.

    Follow HT Tech for the latest tech news and reviews , also keep up with us on Twitter, Facebook, Google News, and Instagram. For our latest videos, subscribe to our YouTube channel.

    First Published Date: 18 Nov, 05:00 IST
    keep up with tech