Large collective request for access to personal data from tech giants
Today, the Foundation for Market Information Research (SOMI) is submitting the largest European collective application for personal data. It is doing this at tech giants TikTok, Zoom and Palantir, for investigations into possible violations of the GDPR. According to the GDPR, companies are obliged to comply with the request for stored personal data.
This article was published on 29th July 2021 on BNNVARA in the Netherlands. Please find the English translation below.
Thanks to the GDPR, companies operating in Europe must provide access to stored personal data on request. It must also be stated how the personal data is stored and with whom it is shared. There is no unambiguous way to submit such a request to the companies and to provide the stored personal data by the companies. This makes it difficult for consumers to understand what data is stored and used. In addition, the consumer often does not know how this can be adjusted or deleted.
SOMI requests personal data for 65,000 consumers
SOMI is therefore committed to consumers, so that they can exercise their rights against tech giants. The foundation collectively requests the personal data from TikTok, Zoom and Palantir on behalf of people who have given a power of attorney. There are no costs involved for the 65,000 participating consumers. However, the collective request for personal data is not part of the claim that SOMI is currently making against TikTok.
A second application with new participants will be submitted on Wednesday 11 August. Any resident of the European Union, Switzerland or Ireland who is 18 years of age or older can participate in this application. When participating in the collective application, consumers can optionally participate in SOMI's investigation into GDPR violations by TikTok, Zoom or Palantir. In addition, they can choose to participate in a possible collective claim.
SOMI app makes use of personal data transparent
SOMI introduced an app that makes requested personal data transparent to consumers in accordance with privacy legislation. The supplied data is presented in a clear manner, so that the consumer understands at a glance which data is stored about him or her, how the data is used by the companies and how this information can be adjusted or deleted.
Tech giants must comply with requests within a month
According to the GDPR guidelines, the tech giants must comply with SOMI's request within a month. If the companies do not cooperate or do not provide complete data, SOMI will take further legal steps, for example reporting it to the Dutch Data Protection Authority (AP).