The company pays for false promises and gray earnings schemes.
Czech information security company Avast was fined $14.8 million for violating the GDPR regulations. The fine was imposed by the Czech Office for Personal Data Protection (UOOÚ) after an investigation into the activities of the company's Czech branch, Jumpshot.
UOOÚ found that in 2019, Avast processed the personal data of users of its antivirus and browser extensions without permission. The data of more than 100 million users was transferred to Jumpshot, which, among other things, was engaged in selling analytics of user behavior on the Internet to third parties.
According to UOOÚ, Avast misled users by claiming that it uses reliable methods to anonymize data, while some of the information could still be used to identify users.
As one of the leaders in the field of cybersecurity and offering the public tools for data protection and privacy, Avast should not have shared the personal data of its customers, which can reveal not only their identity, but also their interests, preferences, place of residence, financial status, profession and other information related to the Internet. private life.
In response to the regulator's decision, an Avast representative stated that the company does not agree with the conclusions of UOOÚ and the characterization of the facts, and is considering further legal actions. The company also reiterated its commitment to protecting customer data and said it has taken steps to prioritize privacy practices. Avast continues to actively participate in international initiatives that prioritize data privacy.
Recall that in February, Avast agreed to pay $16.5 million. to settle charges against the US Federal Trade Commission in a similar case. In 2020, the company discontinued Jumpshot and pledged not to sell browsing data for advertising purposes.
Czech information security company Avast was fined $14.8 million for violating the GDPR regulations. The fine was imposed by the Czech Office for Personal Data Protection (UOOÚ) after an investigation into the activities of the company's Czech branch, Jumpshot.
UOOÚ found that in 2019, Avast processed the personal data of users of its antivirus and browser extensions without permission. The data of more than 100 million users was transferred to Jumpshot, which, among other things, was engaged in selling analytics of user behavior on the Internet to third parties.
According to UOOÚ, Avast misled users by claiming that it uses reliable methods to anonymize data, while some of the information could still be used to identify users.
As one of the leaders in the field of cybersecurity and offering the public tools for data protection and privacy, Avast should not have shared the personal data of its customers, which can reveal not only their identity, but also their interests, preferences, place of residence, financial status, profession and other information related to the Internet. private life.
In response to the regulator's decision, an Avast representative stated that the company does not agree with the conclusions of UOOÚ and the characterization of the facts, and is considering further legal actions. The company also reiterated its commitment to protecting customer data and said it has taken steps to prioritize privacy practices. Avast continues to actively participate in international initiatives that prioritize data privacy.
Recall that in February, Avast agreed to pay $16.5 million. to settle charges against the US Federal Trade Commission in a similar case. In 2020, the company discontinued Jumpshot and pledged not to sell browsing data for advertising purposes.
