European Union privacy regulators rapped WhatsApp on the knuckles for not resolving their concerns over the messaging service’s sharing of user data with parent company Facebook, a year after they first issued a warning.
In a letter sent to WhatsApp on Tuesday and published on Wednesday, the group of EU data protection authorities – known as the Article 29 Working Party – said the company had still not resolved its concerns about getting user consent for the data sharing.
“Whilst the WP29 (Article 29 Working Party) notes there is a balance to be struck between presenting the user with too much information and not enough, the initial screen made no mention at all of the key information users needed to make an informed choice, namely that clicking the agree button would result in their personal data being shared with the Facebook family of companies,” the letter said.
The Irish data protection authority – which has jurisdiction over Facebook in the EU because the company’s European headquarters are in Dublin – said in April that it hoped to reach a deal in the coming months on the data sharing with WhatsApp.
The WP29 also said user’s consent was not freely given as WhatsApp effectively adopted a “take it or leave it approach in which users either signal their `consent’ to the sharing of data or they are unable to avail themselves of WhatsApp’s messaging service.”
A new EU data protection law will come into force in May which will give regulators the power to fine companies up to 4 percent of their global turnover, a huge increase compared with the present levels.