Privacy Group noyb Files Complaint Against EU Commission for Microtargeting Ads

The European Union, known for its strict data protection laws, faces a new challenge as privacy rights organization noyb has filed a complaint against the EU Commission's Directorate General for Migration and Home Affairs. The accusation centers on the Commission's alleged use of microtargeted advertising, a practice that could conflict with the very laws the EU itself has established.

The complaint, filed with the European Data Protection Supervisor (EDPS), targets the Commission's advertising tactics on a social media platform. noyb claims the Commission engaged in "unlawful micro-targeting" related to a legislative proposal aimed at combating child sexual abuse.

Concerns Over Ad Targeting Practices

Noyb, a not-for-profit privacy rights group, is raising alarms about the methods used by the Commission in its digital advertising. The organization is scrutinizing the Commission's use of categories linked to political opinions and religious beliefs for ad targeting, a practice that falls under "special category" data in the EU's General Data Protection Regulation (GDPR). This type of data handling requires explicit consent, and noyb questions whether such consent was properly obtained.

The EU Commission's advertising strategy, according to noyb, included targeting users based on specific interests and beliefs. This tactic raises concerns about the legality and ethics of using sensitive personal data for advertising purposes, especially in light of the GDPR and the Digital Services Act (DSA).

Potential Misuse of Sensitive Data and Legal Implications

Noyb's complaint highlights a broader issue of the Commission potentially misusing sensitive personal information in its advertising campaigns. The privacy group suggests that the Commission may have targeted ads based on users' political views and religious beliefs, a practice that could contravene EU data protection laws.

Moreover, noyb points out that the Commission's own statistics used in the ads might be misleading. They cite media reports questioning the validity of opinion polls conducted by the Commission, which allegedly did not address the negative impacts of the proposed messaging scanning.

Legal and Reputational Risks for the EU Commission

The controversy extends beyond data privacy concerns, touching on the integrity of the EU legislative process. noyb accuses the Commission of attempting to sway public opinion in member countries like the Netherlands, possibly undermining national governments' positions within the EU Council.

Privacy at Risk

The complaint could lead to significant legal and reputational consequences for the EU Commission. GDPR breaches can result in fines of up to 4% of global annual turnover, while DSA violations can reach up to 6%. Given the scale of the alleged violations and the number of individuals potentially affected, noyb urges the EDPS to conduct a full investigation and consider imposing fines.

The privacy group, known for its successful challenges against major adtech companies, now turns its focus to the European Commission. The complaint not only seeks to hold the Commission accountable for its alleged misuse of adtech tools but also aims to uphold citizens' rights in the face of behavioral targeting practices.