The Court of Appeals in London has ruled that legal action against Google over allegations it collected data from more than 4 million iPhone users, can go ahead.
The case centres over whether Google allegedly misused Safari’s security settings in order to track user activity between September 2011 and February 2012.
Safari is designed to block tracking but default, but Google apparently bypassed this feature (the so called ‘Safari Workaround’) to place cookies that gathered information on users and their habits so the search giant could deliver more targeted adverts.
In 2013 Google had to pay a $17 million (£10.5m) settlement to 37 US states to resolve the allegations the company violated consumer privacy by using tracking cookies.
Also in 2013 three UK Safari users launched legal proceedings, inviting anyone who had used the browser on PC, Mac, iPhone, iPad and iPod during the period in question to join them.
Google had sought to move the court case to the United States, but the UK Appeal court ruled in 2015 that the lawsuit could be filed in the UK.
After that in 2017 Google was hit lawsuit over the matter, but in October 2018 London’s High Court ruled that Google’s alleged role in the collection, collation and use of data from the browser was wrongful and a breach of duty, but claimants had not suffered “damage” as specified by Britain’s Data Protection Act.
But now the Court of Appeals in London has overturned this ruling, which had in effect blocked any route to legal redress.
James Oldnall, lead lawyer on the case, told Reuters that the Court of Appeal decision had “confirmed our view that representative actions are essential for holding corporate giants to account”.
Richard Lloyd, the representative claimant in the mass action, was quoted as saying on Wednesday’s judgement “sends a very clear message to Google and other large tech companies: you are not above the law.”
“Google can be held to account in this country for misusing people’s personal data, and groups of consumers can together ask the courts for redress when firms profit unlawfully from ‘repeated and widespread’ violations of our data protection rights,” he added.
Google told Reuters protecting the privacy and security of its users had always been its number one priority.
“This case relates to events that took place nearly a decade ago and that we addressed at the time,” a spokeswoman said. “We believe it has no merit and should be dismissed.”
The legal case to settle the matter is expected to take many more years.
In 2012 Google also had to pay a $22.5 million fine to the US Federal Trade Commission (FTC) for bypassing the privacy settings of Apple’s Safari browser.
Suspended prison sentence for Craig Wright for “flagrant breach” of court order, after his false…
Cash-strapped south American country agrees to sell or discontinue its national Bitcoin wallet after signing…
Google's change will allow advertisers to track customers' digital “fingerprints”, but UK data protection watchdog…
Welcome to Silicon In Focus Podcast: Tech in 2025! Join Steven Webb, UK Chief Technology…
European Commission publishes preliminary instructions to Apple on how to open up iOS to rivals,…
San Francisco jury finds Nima Momeni guilty of second-degree murder of Cash App founder Bob…