Berlin Court Rules that Apple's Privacy Policy Violates German Data Protection Laws

more+
less-

A Berlin court ruled that eight clauses in Apple Sales International's (“Apple”) standard data use policy, which covers how the company can share data, do not comply with Germany’s privacy protection laws and enjoined Apple, which is based in Ireland, from relying on these clauses in contracts with customers based in Germany.  The court also prohibited Apple’s future use of such clauses.

At the heart of the ruling was Apple’s request for global consent to use customer data.  The German court held that Apple was prohibited from asking for global consent to use consumer data without informing the user of where and how the data will be used.  The court also prohibited Apple from merging user data with other information the company had collected on the grounds that consumers might be unclear as to how such data could be used and that Apple could not share location data with its partners to promote its location-based services and products.  

Apple asks for “global consent” to use customer data on its website, but German law requires that consumers be advised in specific detail what their data will be used for and why.  A company in Germany may not even ask for permission to use names, addresses, and phone numbers of users’ contacts. Accordingly, a global consent policy is violative of German law.

The action, which was brought by a consumer watch dog group, is important because the court interpreted Apple’s data protection policy under German, rather than under Irish law, the jurisdiction in which Apple is located.  Thus, while the ruling only applies to Germany and German users, all companies with websites collecting information from users in Germany, no matter where located, should pay attention to this decision.

The court’s judgment can still be appealed and is not yet binding.  However, unless Apple appeals the decision and prevails, it must either revise its privacy policy to accommodate Germany’s legal requirements or develop an entirely new one specific to the country.

About the Author

Ms. Bromberg is the head of the firm's Intellectual Property and Technology group. She handles all aspects of intellectual property, Internet, and technology law, including license agreements, technology transfer and vendor agreements, joint development and co-branding agreements, privacy policies, website terms of service, and management of IP litigation (including patent, trademark, copyright, and trade secret litigation). She was named as a New York Super Lawyer for Intellectual Property in 2010, 2011, and 2012.

About Cohen & Gresser

Recently named to The National Law Journal’s 2013 “Midsize Hot List,” Cohen & Gresser is a 2013 Chambers USA-ranked law firm with offices in New York and Seoul. We represent clients in complex litigation and corporate transactions throughout the world. Founded in 2002, the firm has grown to over fifty lawyers in four practice groups: Litigation and Arbitration; Corporate Law; Intellectual Property and Technology; and White Collar Defense, Regulatory Enforcement and Internal Investigations. Our attorneys are graduates of the nation's best law schools and have exceptional credentials. We are committed to providing the efficiency and personal service of a boutique firm and the superb quality and attention to detail that are hallmarks of the top firms where we received our training.

NEW YORK | SEOUL

www.cohengresser.com                  info@cohengresser.com                   PH: +1 212 957 7600

 

Topics:  Apple, Consent, Data Collection, Data Protection, EU, EU Data Protection Laws

Published In: General Business Updates, International Trade Updates, Privacy Updates, Science, Computers & Technology Updates

DISCLAIMER: Because of the generality of this update, the information provided herein may not be applicable in all situations and should not be acted upon without specific legal advice based on particular situations.

© Cohen & Gresser LLP | Attorney Advertising

Don't miss a thing! Build a custom news brief:

Read fresh new writing on compliance, cybersecurity, Dodd-Frank, whistleblowers, social media, hiring & firing, patent reform, the NLRB, Obamacare, the SEC…

…or whatever matters the most to you. Follow authors, firms, and topics on JD Supra.

Create your news brief now - it's free and easy »