Saturday, July 27, 2024
27 C
Brunei Town

Spotify fined USD5M for breaching EU data rules

STOCKHOLM (AFP) – Music streaming giant Spotify was yesterday fined SEK58 million (USD5.4 million) for not properly informing users on how data it collected on them was being used, Swedish authorities said.

The Swedish Authority for Privacy Protection’s (IMY) said it reviewed “how Spotify handles customers’ right of access to their personal data”.

“As a result of the shortcomings identified, IMY is imposing a fine of SEK58 million on the company,” the authority said.

The regulator noted that under the rules of the European data protection act GDPR, users have a right to know what data a company has about an individual and how that data is being used.

IMY said while Spotify did hand out the data it had when requested by an individual it said the company had not been sufficiently specific as to how that data was being used.

The Spotify app on a smart device. PHOTO: AP

“Since the information provided by Spotify has been unclear, it has been difficult for individuals to understand how their personal data is processed and to check whether the processing of their personal data is lawful,” the IMY said.

It added that the “shortcomings discovered are considered, overall, to be of low severity,” motivating the size of the fine as a result of the Spotify’s user count and revenue.

The streaming giant, which is listed on the New York stock exchange, announced in April it passed 500 million monthly active users with 210 million paying subscribers.

Privacy activist group Noyb said in a separate statement the fine followed a complaint and subsequent litigation from the group, and while they welcomed the decision they lamented the tardiness of the authorities.

“The case took more than four years and we had to litigate the IMY to get a decision. The Swedish authority definitely has to speed up its procedures,” privacy lawyer at Noyb Stefano Rossetti was quoted saying in the statement.

spot_img

Latest

spot_img