Google Ordered To Pay $391m To Settle Privacy Violations

Google will pay $391.5m (£330m) to settle allegations about how it collects data from users as the technology giant aims to resolve allegations that it misled consumers about how it tracked, recorded and shared their device location data. It is the largest privacy-related multi-state settlement in US history

The penalty payment comes after Texas, Indiana, Washington and the District of Columbia took collective legal action against Google in January this year. 

Google has admitted that it tracked the location of users who opted out of location services on their devices across 40 US states and has been told to be transparent about location tracking in the future and develop a web page telling people about the data it collects. 

Knowing a user's location helps advertisers target products location services help Google generate $200bn in annual advertising revenue.

Jose Castaneda, Google spokesperson said, "Consistent with improvements we've made in recent years, we have settled this investigation, which was based on outdated product policies that we changed years ago." Google has already agreed to pay Arizona $85m over similar issues concerning how it collects location data and there remains one outstanding case on the topic in the US courts. 

Oregon Attorney General Ellen Rosenblum, who led the case, alongside Nebraska Attorney General Doug Peterson, said: "For years Google has prioritised profit over its users' privacy. It has been crafty and deceptive...  
Consumers thought they had turned off their location-tracking features on Google - but the company continued to secretly record their movements and use that information for advertisers."

The attorneys general said Google had been misleading consumers about location tracking since at least 2014, breaking state consumer-protection laws. The company has been told to significantly improve user controls and the way it discloses location tracking, starting from 2023.

Google:    Reuters:    BBC:       GovTech:   FBCNews:     Security Affairs

You Might Also Read: 

Google Loses Its Appeal & Must Pay €4.1Billion EU Penalty:
 

« Four Reasons You Need RASP Security For Web Applications
How To Become A Cyber Millionaire »

CyberSecurity Jobsite
Check Point

Directory of Suppliers

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 8,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

iStorage

iStorage

iStorage is the leading global provider of PIN Activated, hardware encrypted, portable data storage solutions.

ID-SIRTII/CC

ID-SIRTII/CC

Security Incident Response Team for Internet Infrastructure in Indonesia.

Digital Defense Inc (DDI)

Digital Defense Inc (DDI)

DDI offers vulnerability scanning, penetration testing, web application testing, social engineering and additional security assessments.

PhishX

PhishX

PhishX is a SaaS platform for security awareness that simulates Cyberthreats, train people, while measure and analysis results, reducing Cybersecurity risks for People and Companies.

Department of Justice & Equality - Cybercrime Division - Ireland

Department of Justice & Equality - Cybercrime Division - Ireland

The Cybercrime division is responsible for developing policy in relation to the criminal activity and coordinating a range of different cyber initiatives at national and international level.

Celerium

Celerium

Celerium transforms cyber defense for both companies and industry sectors by leveraging cyber threat intelligence to defend against cyber threats and attacks.

RFA

RFA

RFA is an institutional-quality IT, financial cloud and cyber-security services provider to the financial service and investment management sector.

Cylera

Cylera

Cylera is a Healthcare IoT cybersecurity and intelligence company built in close partnership with healthcare providers.

DeepView

DeepView

DeepView delivers a unified platform for managing risk on digital platforms. One interactive secure portal allowing employees to engage their networks securely and compliantly.

Nexon Asia Pacific

Nexon Asia Pacific

Nexon solutions include cloud infrastructure and services, unified communications, managed security services, business continuity, secured high-performance network and business applications.

CoreStack

CoreStack

CoreStack helps enterprises overcome cloud challenges such as ever growing security risks, stringent regulatory compliance needs and operational complexities.

Marcum Technology

Marcum Technology

Marcum Technology consultants are focused on helping you reach your company’s full potential by exploring creative ways to integrate tomorrow’s technology into your business today.

Heron Technology

Heron Technology

Heron Technology are a technology solutions consultancy with core competencies in the areas of Cyber Security and Digital Aviation.

Sattrix Information Security

Sattrix Information Security

Sattrix Information Security helps small, mid, and large enterprises in the area of digital transformation with a focus on information security.

QuantumGate

QuantumGate

QuantumGate are a team of world-class cryptographers, cybersecurity professionals and researchers. We help organizations protect their data assets in a post-quantum world.

InstaSecure

InstaSecure

InstaSecure’s Preventive Cloud Controls accelerate alert remediation and strengthen cloud configurations. Set your controls once and prevent current and future risks.