illegal data collection and a daily penalty
Norway’s data protection authority has taken a striking step against Meta, the company behind Facebook and Instagram. It ordered a daily penalty of about 1,000,000 Norwegian crowns, which is over 88,900 euros, to be paid starting August 14 unless Meta halts the practice of collecting user data for personalized advertising. This move marks a bold attempt to enforce stricter privacy rules as the company tracks online activity and location data to drive targeted ads.
The Norwegian regulator announced the daily fine after signaling on July 17 that user online behavior and geolocation data used for ad personalization were being treated as highly intrusive monitoring and profiling. The sanction is expected to last for three months, pending compliance. The decision follows broader concerns about how Meta handles personal information across its platforms and aims to curb practices that authorities view as exceeding what users reasonably expect for privacy in the digital space.
Officials in Oslo say Meta’s approach to behavioral advertising violates European Union data protection standards. They argue that the extraction and analysis of user actions across Facebook and Instagram intrude on individual privacy and threaten data protection rights and freedom of information. These comments came from Tobias Judin, head of the data protection authority’s international division, emphasizing the seriousness of the issue as regulators scrutinize how large tech firms process personal data for advertising purposes.
illegal data collection
The restriction directly affects Meta’s advertising model, which depends on extensive data collection to deliver highly targeted campaigns. Many businesses rely on Facebook and Instagram to reach precise audiences, a strategy built on deep user activity tracking. The decision in Norway highlights ongoing tension between national regulators and global platforms over how personal data should be used for commercial purposes and the boundaries of consent and transparency in online tracking.
Meanwhile, the Court of Justice of the European Union clarified on July 4 that data collection by Meta from its users is illegal when it proceeds without explicit consent. Although Norway is not a member of the European Union, it often aligns national rules with EU data protection standards. Oslo has argued that rapid action is necessary, positioning Norway as a pioneer within Europe in enforcing stronger safeguards against intrusive digital surveillance. The step also signals an increasing willingness among Northern European regulators to translate EU privacy principles into domestic enforcement measures.
Meta was given until August 4 to adjust its practices but declined to comply with the temporary ban. A spokesperson cited by Reuters noted that Norway’s stance contrasts with an apparent agreement reached last week with the regulator, which reportedly offered a path to align with EU rules and provide European users an option to opt out of monitoring for advertising purposes. The Wall Street Journal has reported that this proposal is still under review by Brussels before a final decision is rendered. The evolving negotiations illustrate the delicate balance regulators seek between enabling a business-friendly environment and protecting user privacy across borders.