Avast hit with multimillion-euro fine for GDPR failure

News
By published

Punishment relates to Avast data processing before 2020

Two people having a legal discussion in an office
(Image credit: Shutterstock / Freedomz)

Cybersecurity and antivirus company Avast has been hit with a €13.7 million ($14.9 million) fine for processing customers’ data illegally as per GDPR requirements.

Spanish not-for-profit NGO Facua, which focuses on consumer rights matters, made Spain’s Agency for Data Protection aware that Avast had collected and sold private browsing data, including identifying data, without knowledge or authorization.

Facua credits PCMag and Motherboard for first bringing the matter to public attention, which saw Avast wrongly handling personal data under its subsidiary, Jumpshot.

Avast GDPR fine

Data packaged by Jumpshot from companies like Google, Microsoft, Yelp, Home Depot, Sephora, Loreal, and more, was sold on the pretense that it could “provide companies with a more complete view of the entire online user journey” (via Facua).

The NGO highlights some of the data that was collected by Avast, including Google Maps location searches and GPS coordinates, videos viewed on YouTube, profiles on LinkedIn, and even more broadly, Google web searches.

Read more

> These are the best privacy tools and anonymous browsers

> Twitter faces privacy scrutiny over claims it fails GDPR

> Meta fined €390M over GDPR breaches for its ad and data handling practices

Having transferred the case to the Czech Republic, the Czech Administration has ruled that Avast has committed a number of violations against the GDPR relating to processing personal data, “failing to sufficiently inform the data subjects (users of the Avast antivirus program and its browser extension) at the time the data was obtained from them, about the purposes of the treatment for which they were intended and on the legal basis of the treatment in question.”

A Gen spokesperson told TechRadar Pro on behalf of Avast:

"Avast closed down Jumpshot in January 2020, and with this terminated the processing of customer data by Jumpshot, as stated in the blogpost. The Czech DPA investigation relates to the historic processing of personal data before January 2020. The Czech DPA started its investigations in February 2020, and till today, the proceedings are still ongoing, a final decision has not been issued yet. Therefore, we cannot provide any comments.  

Since January 2020, Avast reaffirmed its commitment to taking all necessary steps to keep its users’ data safe and private. Avast swiftly closing down Jumpshot demonstrates how seriously it has taken this situation. Avast has continued to take proactive measures to ensure that its privacy practices are a top priority and maintains active participation in global privacy-first organizations and initiatives, including partnering with industry-leading privacy advisors such as TrustArc through which Avast earned the TRUSTe privacy certification, and working closely with OneTrust and the Future of Privacy Forum."

TOPICS
Craig Hale
Craig Hale

With several years’ experience freelancing in tech and automotive circles, Craig’s specific interests lie in technology that is designed to better our lives, including AI and ML, productivity aids, and smart fitness. He is also passionate about cars and the decarbonisation of personal transportation. As an avid bargain-hunter, you can be sure that any deal Craig finds is top value!

Read more
European Union
European Commission hit by EU court fine after breaking own data privacy rules
In this photo illustration, the big tech companies Google, Apple, Meta, Amazon, Microsoft logos seen displayed on a mobile phone screen.
Big tech needs less than three weeks to pay off over $8 billion in 2024 fines
Outdoor photograph of a pair of hands holding a smartphone with navigator location points in the background
Millions of phone location records feared leaked as one of the biggest data leaks ever may be a whole lot worse
This photograph shows wordmark of Siri, a digital assistant developed by Apple Inc., displayed on a smartphone
Did Siri break the law? Apple's latest privacy complaint in France doesn't bode well
Illustration of a thief escaping with a white fingerprint
5 massive privacy scandals that rocked the world – and made millions of victims
Avast One
Avast One review
Latest in Security
Microsoft
"Another pair of eyes" - Microsoft launches all-new Security Copilot Agents to give security teams the upper hand
Lock on Laptop Screen
Medusa ransomware is able to disable anti-malware tools, so be on your guard
An abstract image of digital security.
Fake file converters are stealing info, pushing ransomware, FBI warns
Insecure network with several red platforms connected through glowing data lines and a black hat hacker symbol
Coinbase targeted after recent Github attacks
hacker.jpeg
Key trusted Microsoft platform exploited to enable malware, experts warn
IBM office logo
IBM to provide platform for flagship cyber skills programme for girls
Latest in News
Disney Plus logo with popcorn
You can finally tell Disney+ to stop bugging you about that terrible Marvel show you regret starting
Google Gemini AI
Gemini can now see your screen and judge your tabs
Girl wearing Meta Quest 3 headset interacting with a jungle playset
Latest Meta Quest 3 software beta teases a major design overhaul and VR screen sharing – and I need these updates now
Philips Hue
Philips Hue might be working on a video doorbell, and according to a new report, we just got our first look at it
Microsoft
"Another pair of eyes" - Microsoft launches all-new Security Copilot Agents to give security teams the upper hand
The Samsung Galaxy S25 Edge on display the January 22, 2025 Galaxy Unpacked event.
A fresh Samsung Galaxy S25 Edge leak hints at a 2K display and a titanium frame
More about security
An abstract image of digital security.

Fake file converters are stealing info, pushing ransomware, FBI warns
Microsoft

"Another pair of eyes" - Microsoft launches all-new Security Copilot Agents to give security teams the upper hand
Google Gemini AI

Gemini can now see your screen and judge your tabs
See more latest
Most Popular
Google Gemini AI
Gemini can now see your screen and judge your tabs
iFi iDSD Valkyrie in gold, on a beige desk
iFi's iDSD Valkyrie DAC wants to guide your music to the great hall of Valhalla
The Samsung Galaxy S25 Edge on display the January 22, 2025 Galaxy Unpacked event.
A fresh Samsung Galaxy S25 Edge leak hints at a 2K display and a titanium frame
Philips Hue
Philips Hue might be working on a video doorbell, and according to a new report, we just got our first look at it
SDUNITED AX835-025FF mini PC
This mini PC with the incredible Strix Halo APU is yet another sign AMD may have given up on big brands for bleeding edge tech
Disney Plus logo with popcorn
You can finally tell Disney+ to stop bugging you about that terrible Marvel show you regret starting
Girl wearing Meta Quest 3 headset interacting with a jungle playset
Latest Meta Quest 3 software beta teases a major design overhaul and VR screen sharing – and I need these updates now
Hatch Restore 3 in Putty
You can finally start your day with The Office theme song, and I couldn't be more excited
Dell Pro Max with GB300
HP and Dell's latest Nvidia powered PCs are likely to be some of the most expensive workstations ever launched
Shape of Russia filled with Russian flag-colored internet codes on a black hacking background
A new wave of blocks in Russia targets VPN apps and Cloudflare subnets