Ethical Hacking News
France has fined Google €200 million for violating French cookie policies, while Chinese e-tailer SHEIN has been fined €150 million for dropping cookies on customers without securing their permission. The fines were issued by France's data protection authority, CNIL, after a thorough investigation into the companies' practices.
France's data protection authority, CNIL, has issued fines to Google LLC (€200 million) and SHEIN (€150 million) for violating French laws related to cookie usage. The US President Donald Trump has stated that he could impose tariffs on nations with illegitimate digital regulations, highlighting ongoing tensions between the US and EU over data protection and digital sovereignty. Google's failure to secure user consent has raised concerns about transparency in its data collection practices, with CNIL emphasizing the need for clearer guidelines and more stringent enforcement mechanisms. The CNIL's fines serve as a warning to other companies operating in Europe, highlighting the importance of complying with local regulations and ensuring that users are properly informed about their data usage.
France has taken its first steps in addressing the growing concerns over digital sovereignty and cookie policies within the European Union. In recent weeks, France's data protection authority, CNIL (Commission nationale de l'informatique et des libertés), has issued fines to two major tech companies – Google LLC and SHEIN – for violating French laws related to cookie usage.
The move comes as US President Donald Trump has been vocal about his concerns regarding European regulations on digital companies. In a recent warning, Trump stated that he could impose tariffs on nations that regulate US tech companies if they deemed the regulations illegitimate. This stance highlights the ongoing tensions between the US and EU over data protection and digital sovereignty.
CNIL's investigation into Google's practices revealed that the company had failed to obtain proper consent from users before using cookies for advertising purposes. The commission found that Google's cookie advice misled local residents, resulting in the creation of 74 million accounts under circumstances that breached French law. As a result, CNIL fined Google LLC €200 million.
In addition, the investigation revealed that Google had failed to properly secure user consent for its services, particularly in relation to its email features. The commission found that Google's actions exposed 53 million people to ads in the "Promotions" and "Social" tabs of their email accounts. CNIL fined Google Ireland €125 million for its role in this matter.
On the other hand, Chinese e-tailer SHEIN has been fined €150 million by CNIL for failing to secure user consent before dropping cookies on 12 million people residing in France who visited shein.com. The regulator found that SHEIN did not provide clear explanations of how it used cookies and that opting out had no effect due to the company's cookie-pushing policy.
CNIL's notice emphasizes that the commission has previously found numerous instances of similar misuses of cookies, implying that SHEIN should have been aware of its obligations. However, SHEIN intends to appeal the decision, which is currently under review by Google.
The European Union's push for stricter digital regulations and data protection standards has led to increased scrutiny of companies' practices across borders. As more countries implement their own data protection laws, it is essential that tech companies take these regulations seriously and prioritize user consent.
Google's failure to secure user consent highlights the need for clearer guidelines and more stringent enforcement mechanisms within the EU. The company's actions demonstrate a lack of transparency in its data collection practices, which can have serious consequences for users' rights and trust.
The CNIL's fines serve as a warning to other companies operating in Europe, emphasizing the importance of complying with local regulations and ensuring that users are properly informed about their data usage. As the digital landscape continues to evolve, it is crucial that regulatory bodies like CNIL remain vigilant and proactive in addressing emerging issues.
In conclusion, Google's €200 million fine and SHEIN's €150 million fine sent a clear message from France's data protection authority: companies operating in Europe must prioritize user consent and adhere to local regulations. As the EU continues to push for stronger digital standards, it is essential that tech giants take these regulations seriously and invest in more transparent practices.
Furthermore, the ongoing tensions between the US and EU over digital sovereignty highlight the need for a global approach to data protection and regulation. By working together, regulatory bodies, companies, and governments can create a safer and more secure digital environment for all users.
In the future, as the digital landscape continues to evolve, it will be crucial to monitor developments in this space and provide updates on any new regulations or enforcement actions taken by CNIL and other regulatory bodies.
Related Information:
https://www.ethicalhackingnews.com/articles/Fine-Tunes-Europe-Takes-Aim-at-Google-and-SHEIN-Over-Cookie-Policies-ehn.shtml
https://go.theregister.com/feed/www.theregister.com/2025/09/04/france_google_shein_cookie_fines/
https://www.theregister.com/2025/09/04/france_google_shein_cookie_fines/
https://www.msn.com/en-us/news/technology/france-fines-google-shein-for-undercooked-cookie-policies-that-led-to-crummy-privacy/ar-AA1LQuPp
Published: Thu Sep 4 01:31:16 2025 by llama3.2 3B Q4_K_M
