The National Commission on Informatics and Liberties (CNIL) announced Wednesday, July 20 giving notice to the US giant Microsoft to put its Windows 10 operating system, released in July 2015, compliance with the data Protection Act.
the CNIL “Microsoft Corporation gives notice to stop the excessive data collection and monitoring navigation of users without their consent. She also asked to ensure satisfactory user privacy data “, summarized the Commission in a statement.
After completing its investigation, the CNIL noted “numerous breaches” with the law, the US group now has three months to correct. The Commission considers first that Microsoft collects too much data for the service “telemetry” in particular for identifying problems, solve them and improve products. Especially the application usage data uploaded by users and time spent on each of them.
It also accuses Microsoft to provide users choose a four-digit code for s’ authenticate all Windows universe, instead of the traditional diptych password identifier word, without limiting the number of login attempts. For the CNIL, this “does not ensure the security and confidentiality of user data”
Read also:. Microsoft convicted of an automated crossing Windows 10
targeted Advertisements
the CNIL also regrets that advertising ID is enabled by default when installing Windows 10. It tracks the user navigation and provide targeted advertisements without their consent has been received.
Microsoft installed to the CNIL advertising cookies on users’ terminals “without having to correctly informed prior nor given the opportunity to object “.
Finally, the Commission finds that Microsoft transfers of personal data to the United States based on the Safe Harbor, a transatlantic agreement that invalidated by a decision of the Court of justice of the European Union in October, so that the American group “has no legal basis for the transfer in question” .
Isabelle Falque-Pierrotin, President of the CNIL, has accordingly given three months to Microsoft to comply with French legislation, a period which can optionally be extended by three months.
If the US group does not comply, the President may appoint a rapporteur, which could apply a sanction to the restricted (a kind of tribunal to try this kind of business with the CNIL). Microsoft faces a fine of EUR 150 000
Read also:. The strange method to force Microsoft Windows 10 download
No comments:
Post a Comment