Phorm spurs EU privacy action against UK
The European Union is taking legal action against the UK over behavioural advertising system Phorm.
The European Commission is calling for the UK to change its laws to protect people's privacy from issues raised by Phorm, after complaints from internet users.
The behavioural advertising company has been the focus of a privacy debate since top internet service providers (ISPs) such as BT, Virgin and Talk Talk signed up for the system, which uses deep packet inspection to better target ads.
"Technologies like internet behavioural advertising can be useful for businesses and consumers but they must be used in a way that complies with EU rules. These rules are there to protect the privacy of citizens and must be rigorously enforced by all Member States," said EU telecoms commissioner Viviane Reding, in a statement.
The commission launched the legal action after investigating "several" user complaints regarding Phorm. The proceeding flags up failures in the way the UK is following European privacy law, specifically to do with interception of data and surveillance without consent, the commission explained.
"I call on the UK authorities to change their national laws and ensure that national authorities are duly empowered and have proper sanctions at their disposal to enforce EU legislation on the confidentiality of communications," Reding added.
"This should allow the UK to respond more vigorously to new challenges to ePrivacy and personal data protection such as those that have arisen in the Phorm case. It should also help reassure UK consumers about their privacy and data protection while surfing the internet."
The UK has two months to reply to the commission. If it does not reply, or cannot convince the commission that it is indeed following EU laws, the case could eventually reach the European Court of Justice.
Get the ITPro. daily newsletter
Receive our latest news, industry updates, featured resources and more. Sign up today to receive our FREE report on AI cyber crime & security - newly updated for 2024.
In its statement, the commission also said it was concerned that the UK lacks an independent authority to deal with communication interceptions.
In a statement, Phorm said: "This is obviously a matter for the Commission and the UK Government."
But it added: "Phorm's technology is fully compliant with UK legislation and relevant EU directives. This has been confirmed by BERR and by the UK regulatory authorities and we note that there is no suggestion to the contrary in the Commission's statement today. We do not envisage the Commission's proceedings will have any impact on the company's plans going forwards."