Google has been told its updated privacy policy still does not comply with data protection and privacy legislation in several European countries.
Government privacy watchdogs in the UK, Germany and Italy have all warned the search giant that it must rewrite its terms and conditions or face legal sanctions.
Our privacy policy respects European law and allows us to create simpler, more effective services.
The company has already faced similar warnings from France and Spain's privacy bodies last month.
In a statement, the Information Commissioner's Office (ICO), which oversees privacy and data protection in the UK, said: "We have today written to Google to confirm our findings...that its updated privacy policy raises serious questions about its compliance with the UK Data Protection Act.
"In particular, we believe the updated policy does not provide sufficient information to enable UK users of Google's services to understand how their data will be used across all of the company's products."
The company has until 20 September to amend the policy or face legal sanctions, the ICO said.
The moves come just 15 months after Google altered its privacy policy to unify data collection, and is the latest of a number of privacy scandals that have bedevilled the company.
In Europe, the company has been censured over the collection of WiFi data, including usernames and passwords, through its Street View cars.
On 21 June 2013, the ICO gave Google 35 days to delete all the data it had collected or face contempt of court procedures, after the body found it had retained data even after being told to delete it previously. Google claimed the disks had been retained accidentally.
Furthermore, the company has been asked to clarify the data protection implications of its Google Glass wearable computing technology on both sides of the Atlantic, after it emerged the device can take photos and videos of people without their knowledge or consent.
In a statement, Google said: "Our privacy policy respects European law and allows us to create simpler, more effective services. We have engaged fully with the authorities involved throughout this process, and we'll continue to do so going forward."
However, the company declined to elaborate on how this is possible when facing litigation from European data protection regulators.
-
Bigger salaries, more burnout: Is the CISO role in crisis?In-depth CISOs are more stressed than ever before – but why is this and what can be done?
-
Cheap cyber crime kits can be bought on the dark web for less than $25News Research from NordVPN shows phishing kits are now widely available on the dark web and via messaging apps like Telegram, and are often selling for less than $25.
-
AI recruitment tools are still a privacy nightmare – here's how the ICO plans to crack down on misuseNews The ICO has issued guidance for recruiters and AI developers after finding that many are mishandling data
-
“You must do better”: Information Commissioner John Edwards calls on firms to beef up support for data breach victimsNews Companies need to treat victims with swift, practical action, according to the ICO
-
LinkedIn backtracks on AI training rules after user backlashNews UK-based LinkedIn users will now get the same protections as those elsewhere in Europe
-
UK's data protection watchdog deepens cooperation with National Crime AgencyNews The two bodies want to improve the support given to organizations experiencing cyber attacks and ransomware recovery
-
ICO slams Electoral Commission over security failuresNews The Electoral Commission has been reprimanded for poor security practices, including a failure to install security updates and weak password policies
-
Disgruntled ex-employees are using ‘weaponized’ data subject access requests to pester firmsNews Some disgruntled staff are using DSARs as a means to pressure former employers into a financial settlement
-
ICO reprimands Coventry school over repeated data protection failuresNews The ICO said the academy trust failed to follow previous guidance, which caused a serious data breach
-
ICO dishes out fine to HelloFresh for marketing spam campaignNews HelloFresh failed to offer proper opt-outs, the ICO said, and customers weren’t warned their data would be used for months after they cancelled
