It’s funny because to me as a Norwegian, 1 million Norwegian kroner sounds like quite a lot per day. But that’s because I am using my personal income per year as reference.
But to a company like Meta, this is probably pocket change.
The last time this was posted someone did a back of the envelope calculation showing that this accounts for maybe 1/3 of all daily income from Norway so it is a sizeable amount that is proportional to everything.
Fines should be proportional to the damage they deter and compensate for. Fixing fine to revenues means tech companies can make a mockery of the law, as penalties must be ruinous for every other industry or laughably low for tech’s margins.
Fine fixed to profit will do no damage as oppose to fixed to revenue, because profit comes after all expenses so the fine will have no effect, apart from maybe hurting shareholders a little. I agree with your general sentiment though.
Shareholders are the owners of the company. I would think that's where you'd actually want the fines to hit. The shareholders should be responsible for putting in sensible leadership that doesn't get them fined.
As European I've lived through the crisis of 2008, when people were killing themselves due to lack of money and the only concern of EU was pleasing markets, save banks without any repercussions to those who caused all that pain, etc.
I am aware that EU is a PR stunt, probably will make some regulation here and there, but nothing exceptional, it's still a neoliberal/corporativist sewer at the end of the day
That doesn't mean it should always be applied. We shouldn't be attempting to annihilate companies. Just make sure the fine outweighs the benefit of doing something - just as we would with most fines.
I am not sure we shouldn't try to annihilate companies, is a good strategy, or at least not for any company, Meta is useless for society and constantly lying, stealing, omitting, exploiting, endangering, we shouldn't be willing to annihilate companies who make mistakes, probably we should aim to annihilate companies which consistently behave at the edge of civilization
I don't think it's up to you to decide if Meta is useless to society (which society? There are many). If it vanished it would be a huge problem for many societies. That implies it's not useless.
Of course it's not up to me, I am entitled to my opinion, it's implying that each phrase ends as IMHO (OR we need to make it explicit? Are we that bad? Can a single expose an idea that isn't his own?)
But yeah it's not up to me, but history is history
I'm not in the mood of self-inflicting pain to go back to each scandal related to meta, but I guess these are quite heavy examples of the contribution of this company to society(ies?)
Sure, but what doesn't make the news is two billion people were able to communicate with infra that didn't buckle during a global pandemic, for example. Calling that useless is...I dunno. Quite something.
It's a matter of if they're the only ones capable of doing that, or if they're holding their spot and subtracting resources from fairer players.. Meta is the main instant messaging app, can offer it for free thanks to stealing data, doing dodgy things and dark patterns etc.etc. Aren't they holding a spot that could instead be occupied by someone else? Who can't compete because it has a conscience? If we accept players like meta, then we have to stay in a society where in order for someone to compete with them, they have to be worse, and so the whole society is worse off because there is meta abusively occupying the main spot. There is nothing special that meta can do that others can't, or haven't but other players have been pushed out of market, due to less access to funds
I am italian no? we have some high tax evasion, people say that in order to compete they can't pay all the taxes, but no one says that they MUST be in business, by staying in business, they hold a spot, and the rest of companies in order to compete have to evade taxes too, we can't settle on companies that are bad for the society, because they hold back companies that can add value and offering the same stuff with better ethics
As I say, ethics claims are tricky here. You may just be reading bad things about current companies from news orgs that get clicks from such stories, and who will never contextualise their moralising into a broader picture. It could be anything.
What I'm responding to is this:
> Meta is useless for society
Which I think I have falsified. You've now changed your position to "Meta is better than a company I can imagine, but Meta doesn't allow to exist", which I think is more accurate.
What I said is that if we don't annihilate companies that are consistently doing unethical things (hiding studies about the effect of socials on teens, stealing data, selling data, etc. Can we agree these are unethical? Or we need a committee to decide? Is there anything that is definitely unethical, or Meta is getting fined because judges are drunk?)
So yeah let's say judges are not day drinkers and they are continuously fining meta for reasons, is it being once per month fined? Is it consistently unethical?
So it keeps a power spot, it retains users thanks to dark patterns, and unethical algorithms, it holds a dominant position, what I think is that a better company CAN or CANNOT exist, but if Meta is allowed to keep being unethical and holding a dominant position then we would never know
What I say is that we should not annihilate companies who make mistakes.
We should annihilate companies that are consistently unethical (Or day drinking judges, I guess at this point)
And without any cult of holding morality, I don't hold it, I don't want , I don't want to be a dictator, but there are laws, and according to courts Meta is breaking those laws over and over, I am not a messiah, but at a certain point we have to trust the entities whose jobs is to know the law when they say Meta is doing unethical stuff and so are fining it
> That doesn't mean it should always be applied. We shouldn't be attempting to annihilate companies. Just make sure the fine outweighs the benefit of doing something - just as we would with most fines.
You seem to be agreeing, but given the length of your prose it's hard to tell. Do you disagree?
Yeah, I mean, it is part of EEA, pays for the access to common market, respects the EU directives, but has no saying, but that doesn't like make big difference
From what I can remember from other cases here in Norway, the daily fines will be increased if the regulatory body sees that they do not have any effect.
The goal here is compliance. So the regulators will first try guidance, then a formal warning, then daily fines, then increasing the fine, fine (local) directors personally, and finally dissolvent of Metas local company.
This is the thing: the corporate nuke as a tool is available in most jurisdictions -- how could it not be? -- but at place like Norway I can very well see it being used.
There was talk California should've used it on Uber for Greyball.
> the corporate nuke as a tool is available in most jurisdictions
“Corporate nuke” is a corporate lobbyist’s term for distracting from massive fines. Barring expropriation, once you ask what happens to the nuked assets, corporate death penalties all come down to massive fines with extra steps. If you want to “nuke” a corporation, revoke its licenses (not applicable here) or levy a massive fine.
Yeah I knew there were some high-profile Finnish cases, the Nokia guy in particular. [1] I did some cursory looking before I posted to because I thought Norway had it too, looks like they have wealth/income based fines for drunk driving, not speeding. [2]
Then you weren’t in a budgeting role. Multiple heads in Facebook’s Norwegian office will be on the line if they lose a double-digit fraction of profits. If you want headlines, go big and risk losing in court. If you want results, be smarter.
The way Oslo is playing it, this looks smart. They’re keeping it local to avoid jurisdictional challenges. And instead of a Vestager-Khan populist swing for the fences that entrenches both sides in litigation for years, it gives Meta a reasonable opening to actually change its behaviour in the short run.
As ex facebook - no, that’s not how it works. they’d be lucky to even have multiple heads in Norway and all the shots are taken in MPK anyway. These fines are act of god in their eyes, a tiny spec in a sea of money.
Nobody ever gets fired for adverse policy environment, that’s bad fanfic.
Unless you throw an executive to prison like Brazil or force temporary shutdown like India or leverage three digit million fines like the EU … it’s all pocket money.
This contradicts how a few folks I know there ran their layoffs, but totally aligns with their psychology ca. 2021. Could this come down to higher rates?
Also, if Facebook volunteers to pay a 100%+ effective tax rate in Norway…that seems fine for Norway?
Fun fact: The US did apply it to Twitter when they really wanted to stop the dicking around.
> Finally, we note that Twitter assured the court that it would comply with the warrant by 5:00 p.m. on February 7, and never raised the possibility that it would defy the order for a month and end up owing the court “the entire world’s gross domestic product.”
What do you mean? They will pay the fine or the NO courts will extract them; Meta has legal entities with bank presence to charge for ads and (I assume) pay employees in NO.
Ultimately they go to any friendly country where Meta does have an account and say to a local court "Meta broke our laws, here's the court ordered fine, make them pay up."
This kind of thing, even though the details are different, is also why Kim Dotcom got arrested for violating US law despite not being in the US.
True, although the ability of the US to impose its will on New Zealand is probably much higher than the ability of Norway to impose its will on the US.
Doesn't need to be the USA directly, it could be anywhere in europe where Meta has assets.
I'm also not sure if the courts in the US default to cooperating in such situations; I seem to remember something about Congress passing a law saying that Americans didn't need to pay fines for (libel?) imposed by (UK courts?) or something like that, suggesting that such was the default before then.
Meta makes more than that in a hour, which means that they can afford to continue these violations for a very long time.
Instead fine them in the billions of dollars and at most in the tens of billions for repeated violations and privacy breaches just like what is happening to Google. [0]
This is a common misinterpretation of the story. Its not like Norway is the only country able to issue fines. Yes, Norways fines wont bring down meta. But how large will the fines become if rest of Europe follows their example?
On a global scale it's tiny, but on a regional scale it could really impact profitability. Assuming 85% of Norwegians have an account:
* 98,500 a day = $35 million per year
* $35 million / (5 million Norway population * 85% assumption) = $8 / year fine per Norway user.
* I can't find Norway-specific revenue, but Meta's average revenue per user is $18 across Europe, but Norway could be higher than average. Outside Europe the highest is USA at $60. Assuming revenue / user is half way between this - $39 - this fine would be 20% of revenue.
* $39 per user would mean total revenue of $200m in Norway.
* Facebook turns 32 billion of revenue into 7.79 billion of net profit (24% of revenue to Net profit). This would mean profit of c£47m in Norway before the fine, and $12 billion after-fine.
This is with a fairly optimistic view of revenue per user - at the Europe average of $18 per user it would be a loss of $13m.
Another way to look at this is that if you population-adjust the fine to the world, it would be c$60 billion per year (although this is less accurate as it does not account for the fact that many regions have less users or are less profitable). Either way, Facebook can handle these fines in a handful of regions, but they can't handle these fines in all regions.
It also feels like each country going after them using their own local GDPR enforcement (or equivalent) is better than some EU level action (if that is even possible). It ties up Meta resources having to make more legal challenges, and it probably happens faster as well.
Just need EU countries to work together in a coordinated way so it starts having an effect on quarterly results. Rather than each fine being picked off one at a time.
Much of the GDPR is fine and I think we are right to crackdown on cross-website tracking, but the recent attempts in Europe to basically ban behavioral ads of all kind (a reversion to newspaper style ads) is, in my view, clearly a protectionist effort aimed specifically at American companies because Europe feels they cannot compete (of course missing the fact that the adhoc, ex post facto & bill of attainder-style of regulation in Europe is a large part of the story of why they have been unable to compete)
There are lots of small, niche businesses that literally could not exist without this targeting.
e: Is the discussion in this thread really so without value that it should be hidden?
Sure: Airbus, Alstom and Technip are a few examples.
They were usually sued for corruption in developing countries to obtain contracts.
They were however sued in the US even though they are not headquartered there, had to pay huge fines that brought said companies to their knees and were later, surprisingly, bought by American companies.
US companies are also sued and fined in the US for breaking these laws.
> In the case of GDPR-fines companies are literally laundering use data.
They are using the data in compliance with their ToS, which is decided post-facto to be in violation of the GDPR. The level of regulatory uncertainty there is far from the clear-cut “don’t bribe politicians.”
I don't see it as overreach that the US does not let foreign companies that pay bribes compete in the US. Given that US companies cannot pay bribes legally, it would be hard for them to compete domestically with companies that can bribe simply because they are headquartered elsewhere.
> This is also wrong. You can simply ask the EU member country's national agency responsible for the enforcement of the GDPR proactively.
I am going to assume this one is a joke given the consistency (or lack thereof) of GDPR guidance from European regulators.
> Honeywell was recently fined for FCPA violations.
They were fined a third of what Alstom while having double the revenue.
This only happened because both Brazil and Algeria got involved.
> I don't see it as overreach that the US does not let foreign companies that pay bribes compete in the US.
But this is not competition in the US, it's competition abroad.
> Given that US companies cannot pay bribes legally
Which like Honeywell we know they absolutely do like every company operating in developing / BRICs countries.
> I am going to assume this one is a joke given the consistency (or lack thereof) of GDPR guidance from European regulators.
Yes and I'm sure that Google, Facebook & co were only caught on "technicalities" because the law wasn't "clear enough". If that is not a joke I don't know what is ...
> They were fined a third of what Alstom while having double the revenue.
I think you have a flawed conception of how fines are supposed to work…
> But this is not competition in the US, it's competition abroad.
Of course it is about competition in the US, otherwise they could freely exit the US market and not pay shit.
> Yes and I'm sure that Google, Facebook & co were only caught on "technicalities" because the law wasn't "clear enough". If that is not a joke I don't know what is ...
I mean, this whole conversation is about whether they are being targeted by regulators - your statement is question-begging.
> I think you have a flawed conception of how fines are supposed to work…
Fine amounts are not related to company revenue but it gives you an idea of the impact it might have on the company and the sentencing differences when we are talking about an American company vs a foreign company.
> Of course it is about competition in the US, otherwise they could freely exit the US market and not pay shit.
No it's not. The only reason these companies comply is that the US has retaliatory tools outside of the US that are very powerful.
It has nothing to do with American contracts which represented a minor share of the revenue in the case of Alstom.
> I mean, this whole conversation is about whether they are being targeted by regulators - your statement is question-begging.
Yes, because they simply broke the law.
I mean Google is still sending data back to the US while this has been illegal since 2020.
> US companies are also sued and fined in the US for breaking these laws.
And European companies are also sued for breaking GDPR. Recently, the CNIL fined Criteo, a French adtech company, for 40M€. Multiple other fines in the 1M+€ range (Carrefour, Total, AG2R…) for French companies.
You can go on Enforcement Tracker, you will find a lot of small fines against EU entities, and few but heavy fines against US entities. I don't think this is protectionism, but rather that EU companies fare better than US companies in environments with historically strong privacy laws, precisely because they are subject to these regulations from day 1.
> They are using the data in compliance with their ToS, which is decided post-facto to be in violation of the GDPR.
A ToS is a contract, and contracts can violate the law. Nothing surprising here.
> I don't think this is protectionism, but rather that EU companies fare better than US companies in environments with historically strong privacy laws, precisely because they are subject to these regulations from day 1.
Here is a quote from an MEP who helped design the EU DMA on deciding who counts as a gatekeeper:
"Let’s focus first on the biggest problems, on the biggest bottlenecks. Let’s go down the line—one, two, three, four, five—and maybe six with Alibaba. But let’s not start with number seven to include a European gatekeeper just to please Biden.”
It is hard for me to read that as suggesting anything but strongly protectionist motivations.
> A ToS is a contract, and contracts can violate the law. Nothing surprising here.
I don't disagree, merely with the suggestion that the regulatory framework the EU has set up, which is still actively being worked out in a patchwork of procedural decisions up until literally today, is as clear-cut as the US prohibition on bribery in the FCPA.
That's nice, but we're talking about the GDPR, a law with roots in the 70s. Not the DMA. And as I pointed out earlier, EU entities are getting fined and sued by regulators.
About GDPR and protectionism–I already answered. Sorry if I misunderstood you, I did not pay attention to the DMA and that was not the subject of the article.
I mostly agree. I'm not exactly a fan of Big Tech; Meta, X and co. are all pretty horrid companies, but it does feel like some EU politicians think they've discovered an "infinite money glitch" and they just lob random fines at these companies expecting them to cough up cash to stay in their markets. some of the things they're getting fined for is pretty ridiculous.
The article is quite clear on what the issue is. Meta needs explicit consent to do this kind of targeting. With consent, there is no issue. The tracking itself is not illegal, but doing it without consent is illegal.
I have doubts on how effective these type of consent based system are. I for one always click “accept all” and move on for most websites I am on. Average layman has very little time the effort needed to understand and customize the consents are quite high. Not to say they purposely make the UI hostile in those consent popups. For me anyway GDPR has been largely a waste of bureaucracy, a better effort would be to educate populous about what cookies are and how tracking works and the extent of the trackings etc - these stuff should be in High School curriculum already by now.
Any site that uses a dark pattern like only having "Allow all" and "Show purposes" is in clear violation of the GDPR, and they could just as well have just ignored showing anything! The regulation is clear that opting out should be as easy as opting in. A conforming consient dialog has a "reject all" as well as an "allow" button.
And when they do, I always click "reject all". I think most people would - which is why I guess some sites still try to use those dark patterns. I'm still waiting for a big regulatory fine to make an example. If a known company is fined almost out of existence due to lack of a reject button, I think there would be instant self-regulation here.
> For me anyway GDPR has been largely a waste of bureaucracy, a better effort would be to educate populous about what cookies are and how tracking works and the extent of the trackings etc - these stuff should be in High School curriculum already by now.
Don't confuse the GDPR with "cookie banners" though. That's the end user visible tip of the iceberg. The biggest premise (and in my opinion the genius of the regulation) is that the end user is not required to know or understand anything. Instead, the people handling their data should. And if nothing else, it really has forced everyone (often even outside the EU) to think twice about how their data is stored and retained. And that's huge positive even if cookies were never a thing in gdpr.
Didn’t the EU recently cut a deal where the data from EU can be transferred to US without any legal ramifications [1]? So then this just goes to show it’s just about adding another layer of bureaucracy instead of caring about protecting user data.
Yes, except that Meta is being legally compelled to provide the services regardless of whether the user consents.
They are basically being forced to separate the part of their business that actually makes money from the part that users like and then forced to lose money on those users.
I would be fine about laws requiring facebook to be up front and clear about how they are using this data, but mandating free rider status seems a step too far.
It's been a while since I read the GDPR so I could misremember, but I don't remember anything similar to this assertion.
While I don't think it will work on the scale FAANG wants (see e.g. Youtube premium), what is the legal roadblock to let users chose between tracking or paying for the service?
It is literally illegal in the EU, I am pretty familiar with this regulation. This is both from ECJ decisions on gdpr and will also be codified in the DMA
Fair enough, these decisions are recent and are in conflict with other decisions in other countries around the GDPR as well as past guidance from European regulators (the EDPB explicitly said that this was not allowed in 2020). I also don't think you can really say with a straight face that this is a decision that a company like Meta could comfortably rely on, the regulatory uncertainty here is still extremely high.
It also requires a court to decide that your fee is a “reasonable” one and you cannot just refuse access outright - you must make your content available to the non-consenting user.
Regardless, all of this will be illegal anyways once the DMA comes into effect. And I still think, national exceptions aside, that my description of the current state of EU law was accurate:
"The prevalent regulatory approach in Europe is that currently advocated by the European Data Protection Board ('EDPB') in its Guidelines 05/2020 on Consent under Regulation 2016/679 whereby the EDPB provides in no uncertain terms that '[i]n order for consent to be freely given, access to services and functionalities must not be made conditional on the consent of a user to the storing of information, or gaining of access to information (paragraph 39 of the Guidelines)'." [0]
It's still very up-in-the-air since the EU-wide regulation should be uniform. I hope the pendulum eventually stops in a way more privacy friendly place than those recent french ones. Yes it would be a pretty harsh stroke for the business model of some companies (social media, for example) but the alternative seems much worse.
Cheers. It is comical that so many in this thread are suggesting that the GDPR is super clear and not subject to uncertainty given this crazy patchwork of decisions and countermands.
It's only unclear if your business model is malicious and relies on finding innovative ways to breach it and pretend it's compliant.
The regulation is very clear: non-functionally-essential data processing requires explicit consent. If in doubt, err on the side of caution and use consent and opt-in rather than another legal basis such as legitimate interest. Business models based on stalking or spamming are no longer allowed.
Keep in mind that the objective of the regulation is not some punitive shake-down but to give people rights on how their data is used. A good-faith effort that accidentally falls short will be given guidance and a reasonable timeline to implement changes - there's no risk to ever get a fine as long as you err on the side of caution. You can also proactively ask your local regulator for guidance if something is unclear.
Your own link indicates that they have gone back and forth on the guidance around "opt in or pay" models three times already.
As I have said, this model attempts to enshrine free ridership, which might work while there is the rest of the world subsidizes it, but it is not a sustainable model to force tech companies to serve users at a loss.
The objective of the DMA which will serve to enshrine the illegality of these models is to target American tech companies and European legislators have explicitly stated as such.
No, it makes it a legal method of payment as long as you permit free riders or alternatively you can pull up the drawbridge and charge all users for it, preventing poorer people from using the largest public squares in the world.
Free access to global communication is not a bad thing.
But this is besides the point: the guidance is absolutely not clear and if local regulators cannot even get their story straight I am not sure how you expect foreign companies to figure it out. And collecting information about how users use your property is not stalking.
> preventing poorer people from using the largest public squares in the world.
Advertisers aren't charities and the purpose of advertising is ultimately to drive profit. Subsidizing poor people is not in their interest.
The fact that poor people can currently access things for free is a result of imprecise targeting. If there was a way for advertisers to reliably tell apart poor people from the rich ones they'll happily block the poor ones.
Without laws like the GDPR in place to curtail data collection and profiling, it's only a matter of time before more and more data is collected to enable this kind of targeting and lock out poor people too.
> Free access to global communication is not a bad thing.
Global communication being subsidized (and thus controlled) by a handful of commercial interests is very dangerous.
> And collecting information about how users use your property is not stalking.
I'm not talking about basic self-hosted (very important difference!) web analytics or server logs here, I'm talking about large-scale stalking such as what Google/Facebook or any major ad provider does. The information they collect go way beyond what the user does on their platforms.
> The fact that poor people can currently access things for free is a result of imprecise targeting. If there was a way for advertisers to reliably tell apart poor people from the rich ones they'll happily block the poor ones.
You are absolutely wrong about that and you do not understand the business model. I am not saying it has anything to do with the goodness of their heart but this is absolutely not something that would be in their interest. They benefit from the networks effects just like the users do.
> Advertisers aren't charities and the purpose of advertising is ultimately to drive profit. Subsidizing poor people is not in their interest.
It is possible for self-interested action to have knockoff positive effects. In fact, it is actually quite common: most exchanges are mutually beneficial.
> I'm not talking about basic self-hosted (very important difference!) web analytics or server logs here, I'm talking about large-scale stalking such as what Google/Facebook or any major ad provider does. The information they collect go way beyond what the user does on their platforms.
If you read my original comment, you would see that I am in favor of banning cross-site stalking but that is both not what Meta is being fined for here and not the only thing the GDPR/DMA prohibits.
Targeting based on only your own platform is a good middle ground.
> Targeting based on only your own platform is a good middle ground.
I think it's still a problem because it's a grey area as to what "own platform" means exactly. Malicious actors will stretch that definition beyond what's reasonable.
Publicly-available data posted by the user seems fair, but things like scroll position, or the time you read a particular item, or forms typed but not submitted (all things I'm sure Facebook is absolutely collecting via client-side JS) should not be considered fair.
Either way, I'm personally in favour of ad-based business models getting shut down/being made unprofitable as it will ultimately realign the incentives, surface the true price of platforms and mean that we can finally have communication/entertainment tools that are designed with those primary purposes in mind as opposed to spam machines with the bare minimum amount of functionality sprinkled in. I want our online public squares to be accountable to their end-users rather than advertisers, and facilitate communication rather than outrage (what they call "engagement").
>Although it took the view that “Pay or Okay” could be permissible in principle, it found that the approach taken by the news outlet didn’t comply with the law because it didn’t provide the option to specifically consent to certain purposes
I think the logic of people not wanting their data/actions used for ad targeting being "free riders" is a step too far. Just target ads based on data I'm willing to be targeted on. Ask for it explicitly and I'll give the data (location, interests, whatever). But don't use the fact that I looked too long at a clip of a guitar on instagram to show me a targeted ad for a guitar in my facebook feed.
I didn't say that people who don't want to use their data for ad targeting are free riders, but they do become so when Meta is compelled to provide them services even if it is at a loss. It is literally definitionally free ridership.
What I mean is that I find the idea of giving users the impression that they are giving ip data for something else (For social network use) but using that data for ad targeting is wrong. And I agree with the GDPR (non-french interpretation) that services should not be conditioned on that use of their data. And I STILL don't think it's free ridership. They can show ads all they want. But they can't target them using data they didn't agree to. What it all comes down to is I don't think people should be ALLOWED to make the transaction of service-for-targeting, at all.
I agree with your first statement, but your second statement means that you think FB should be compelled to serve free riders. If you are being compelled to serve users that are unprofitable, a clear implication of the GDPR, then you are compelling free ridership. The difference between targeting and not is the different between net profit or not for many users.
I think the end game is that if ads are generally NOT targeted based on a huge volume of information, then the pay for ads with less targeting will go up. During a transition those who show pinpoint targeted ads while others don't will make more money. But eventually if the whole 2000-2025 era of ad targeting is confined to the historybooks, then we could have a better internet. And the amount of ad spend in total will be unchanged (perhaps some of money will return to print/tv etc. since internet ads will be relatively less effective). But the bottom line is I think it SHOULD be profitable to show ads with less targeting, not that it WILL be. And I think regulators have the power to ensure that this is the future.
> The difference between targeting and not is the different between net profit or not for many users
I don't think it's a bad idea to have regulation that makes entire regions of an industry unprofitable over night, if that's what it takes.
> And the amount of ad spend in total will be unchanged
Citation very very much needed as that is not at all what standard economic theory would predict.
As I said, there are lots of niche small businesses that literally could not survive without targeted advertising so that demand goes away as soon as these bans go into effect.
> I don't think it's a bad idea to have regulation that makes entire regions of an industry unprofitable over night, if that's what it takes.
Yes but I think if the choice were actually presented as “pay for FB or repeal this regulation” and the EU had a referenda on it, the regulation would be banned. The only way this is getting through is because the public is being convinced that they can have their cake and eat it too. They might be right, but only because they are being subsidized by users in the rest of the world.
> Citation very very much needed as that is not at all what standard economic theory would predict.
That was assuming that the total ad spend is constant as a fraction of revenue and that revenue would be unchanged. If less effective ads overall would lead to lower revenues then the ad spends would shrink. But they would shrink equally for everyone, at least.
> there are lots of niche small businesses that literally could not survive without targeted advertising
There is nothing banning targeting. The problem is using info that users don't know/think is used for targeting, and using it for targeting. I'd be happy to take a 200 question survey as a condition for using facebook, where they ask me about my hobbies and whereabouts and clearly say it's for ad targeting. Obviously I could say "I'd rather not tell" instead of "I like guitars", but in such a scenario I'd happily give up my targeting info. But I don't want to be shown a guitar ad because I looked at one on an unrelated site with a facebook tracking pixel on it. It's absolutely dystopian.
> public is being convinced that they can have their cake and eat it too.
Yes I'm sure many think that. But I think the only way of changing the status quo is through heavy handed regulation and making initially impopular decisions and risking the death of a lot of business in the process.
> If you are being compelled to serve users that are unprofitable, a clear implication of the GDPR, then you are compelling free ridership.
Facebook are the ones who've structured their business like this though — they could profitable with a subscription model instead, they've just chosen to make their product free at the point of use.
Exactly. There is no one proposing anyone provide anything for nothing. It's only one particular transaction that is disallowed. You can show dumb ads, use subscriptions and also freely target based on info that people are aware is used for targeting. That's by no means "free" in any of those scenarios.
Meta is free to charge for the services they provide. The EU isn't mandating that they provide services at no cost to the user. It's Meta's choice to finance those services with ad money.
“The prevalent regulatory approach in Europe is that currently advocated by the European Data Protection Board ('EDPB') in its Guidelines 05/2020 on Consent under Regulation 2016/679 whereby the EDPB provides in no uncertain terms that '[i]n order for consent to be freely given, access to services and functionalities must not be made conditional on the consent of a user to the storing of information, or gaining of access to information (paragraph 39 of the Guidelines)'." [0]
There was a recent decision in France suggesting otherwise, but this is not the opinion of the primary EU regulatory guidance nor has it been seriously tested. Either way, it will become fully illegal to refuse under the DMA.
A service provider must provide its offerings regardless of the user accepting to be tracked or not. The provider is not even allowed to make it cumbersome to opt out.
If Meta doesn't like it they're free to either be fined into oblivion or, alternatively, to just fuck off from the European market.
> Yes, except that Meta is being legally compelled to provide the services regardless of whether the user consents.
I mean, obviously they are compelled to do that and this is completely fine.
As users people should not be blackmailed into accepting psychological manipulation in their lives, just to be allowed to use a service. If Facebook's model for profit is so bad, that they cannot profit without manipulation, then perhaps their whole business is a shady one and they should start asking for membership fees. I could not care less, whether they need their pesky ads or the data from people viewing and interacting with them. Without consent they don't belong on the users' screens, end of story. If they cannot do business ethically, I wish they would not do business at all.
> I would be fine about laws requiring facebook to be up front and clear about how they are using this data, but mandating free rider status seems a step too far.
It has nothing to do with "free riding". They offer a service and that service should be worth its weight to the users. If it isn't, then apparently it is not a good enough service. To get back the money through the back door, by utilizing manipulation of users and spreading hate-speech for engagement metrics is not OK.
> Fines like this are a nice little tax write off, just another business expense.
The fines seem to be leveled at Meta's local company in Norway. As I understand it, fines are not deductible in Norway.
(I am not an accountant, and my company has never gotten a find, but looking up this in the accounting system I use, it seems it is not deductible: https://kontohjelp.fiken.no/as/medMoms/7799?sok=7799 ( in Norwegian)).
If a company tried I think it should be viewed as contempt of court. A company trying to get money back for which it was fined would basically be them thumbing their nose at the fine. Maybe that is why fines are not deductible.
See that’s the thing about being a global company: You can pay off the fines in one country as part of an expense for a branch in another, where it can then be deducted from taxes in that foreign country. So yea, fuck you courts.
I've said it before and I'll say it again: the only way to make fines have any teeth for companies like this is for states to fine companies in equity, not cash. Shareholders will force change if the state might realistically become the majority shareholder and in doing so dilute everyone else's holding.
And well, we're living through a period where we're rapidly accruing evidence every day of how bad the alternative is.
For what it is worth, I'd like to see companies like Meta, Alphabet, and Amazon turned into global cooperatives governed by their employees and users. These would be the largest democracies the world has ever seen and would almost certainly be governed more sensibly than they are today.
Just levy a fine. From the corporate death penalty to this stuff, it’s all just fines with financial engineering. Cut out the bankers and lawyers and just levy a bloody fine.
Every problem you think you’re solving by adding extra steps simply compounds the complexity of levying massive fines while distracting from them.
The idea of property is a legal one. It has no other basis in the world - if a democracy decides that property is forfeit if the law is broken, that is perfectly fine. See also, wealth taxes.
People already buy shares in these companies because they are profitable, and likely to remain so in the future. The problem is passive investment (which is forced on most people as pension funds don't "pass through" the right to vote) means people don't have to govern these organisations to protect the value of their investments. Fines are the cost of doing business.
If the stakes were "use it lawfully or lose it" the shareholders might realistically become more inclined to take action against boards who allow mismanagement. That's what this is, by the way: mismanagement with global consequences.
Investment won't go anywhere because people will always seek a return on their capital. The idea that they would rather see that capital inactive and atrophying over time rather than complying with simple and clear rules around corporate conduct is absurd.
I mean, it doesn't matter. The people with the jails are the people who write the rules that say how much of my effort I keep.
The difference is: we have a well-defined separation between money (a tool to communicate relative value) and ownership. Moving the government into the taking things you own business is a bad idea.
If they were speaking of all, sure. Not all companies do poorly, though: Water treatment is often enough government owned, and we could do a lot of basic services in the same thing. We could do better on these, for example: Not billing residential customers for things like water, electricity, internet, and mass transit through taxes to ease the burden on poorer folks.
They aren't talking about anything like this. The companies can avoid turning over equity by not getting fined. I don't think this is quite the right approach, but I do think we should consider other options. For example, getting fined means that stockholders can't get payouts and execs couldn't get bonuses or anything outside of their base monetary salary. These sorts of things make it harder to just write off a fine as "cost of business" even if the fine itself is low.
Unless they decide they do. That's the strange thing about sovereignty in a democracy.
It is worth remembering that there's no such thing as a "global" company, by the way. These are largely American companies. They are structured to be unaccountable to other countries, and this is one of the ways in which american imperialism works.
> Unless they decide they do…the strange thing about sovereignty in a democracy
Not how sovereignty works. Oslo’s extraterritorial enforcement is bound by treaties that set limits on what it can do. It ultimately requires others’ coöperation.
In practice, we delegate this to courts. The EU’s track record there is put to shame only by the FTC. Oslo, uniquely, seems to be ignoring the siren calls of fist pounding to populists in favour of prodding Facebook to change.
You dropped a few qualifiers there. All companies that make mockery of the rules and laws of society that they operate in by persistently breaking the law, and only when those companies don't respond to any other form of punishment.
Do you disagree with corporations being held accountable, or do you have an alternative proposal that doesn't let them get away with murder, so to speak?
> Do you disagree with corporations being held accountable, or do you have an alternative proposal that doesn't let them get away with murder, so to speak?
I genuinely don't understand how you read it this way. We already have mechanisms in place to punish companies, and send their directors to jail. Stealing them from their owners is the only thing I am criticising.
I mean, look:
> Making all companies state-owned might have some historically-evidenced downsides.
Where there do you read, "we should stop fining companies and holding their directors accountable"?
That's actually a pretty good idea! Refreshing to finally find a viable alternative (or addition?) to the usual "jail the high up people responsible for illegal activities". Not that there would be anything wrong with that, either.
Added to my list of things to do if I ever become a dictator by chance.
Why do countries fine so little for egregious problems. But then fine poor people a relatively insane amount for forgetting to put some change in a parking meter after it expires?
139 comments
[ 2.8 ms ] story [ 201 ms ] threadBut to a company like Meta, this is probably pocket change.
We read about privacy related fines here and there, but none really seem to take into account the global revenue
I am aware that EU is a PR stunt, probably will make some regulation here and there, but nothing exceptional, it's still a neoliberal/corporativist sewer at the end of the day
But yeah it's not up to me, but history is history
https://www.bbc.com/news/technology-64075067 or https://pubmed.ncbi.nlm.nih.gov/32018149/
I'm not in the mood of self-inflicting pain to go back to each scandal related to meta, but I guess these are quite heavy examples of the contribution of this company to society(ies?)
I am italian no? we have some high tax evasion, people say that in order to compete they can't pay all the taxes, but no one says that they MUST be in business, by staying in business, they hold a spot, and the rest of companies in order to compete have to evade taxes too, we can't settle on companies that are bad for the society, because they hold back companies that can add value and offering the same stuff with better ethics
What I'm responding to is this:
> Meta is useless for society
Which I think I have falsified. You've now changed your position to "Meta is better than a company I can imagine, but Meta doesn't allow to exist", which I think is more accurate.
So yeah let's say judges are not day drinkers and they are continuously fining meta for reasons, is it being once per month fined? Is it consistently unethical?
So it keeps a power spot, it retains users thanks to dark patterns, and unethical algorithms, it holds a dominant position, what I think is that a better company CAN or CANNOT exist, but if Meta is allowed to keep being unethical and holding a dominant position then we would never know
What I say is that we should not annihilate companies who make mistakes.
We should annihilate companies that are consistently unethical (Or day drinking judges, I guess at this point)
And without any cult of holding morality, I don't hold it, I don't want , I don't want to be a dictator, but there are laws, and according to courts Meta is breaking those laws over and over, I am not a messiah, but at a certain point we have to trust the entities whose jobs is to know the law when they say Meta is doing unethical stuff and so are fining it
> That doesn't mean it should always be applied. We shouldn't be attempting to annihilate companies. Just make sure the fine outweighs the benefit of doing something - just as we would with most fines.
You seem to be agreeing, but given the length of your prose it's hard to tell. Do you disagree?
The goal here is compliance. So the regulators will first try guidance, then a formal warning, then daily fines, then increasing the fine, fine (local) directors personally, and finally dissolvent of Metas local company.
Metas local company is named "Facebook Norway AS" and in 2022 did have a revenue of about 6.6 million USD, with a profit of 3.6 million USD according to https://www.proff.no/selskap/facebook-norway-as/oslo/reklame... . They have 27 employees. The revenue from Norway are however much bigger and was speculated to be 233 million USD in 2021: https://e24.no/naeringsliv/i/A3r1Mz/facebook-bokfoerte-bare-...
There was talk California should've used it on Uber for Greyball.
“Corporate nuke” is a corporate lobbyist’s term for distracting from massive fines. Barring expropriation, once you ask what happens to the nuked assets, corporate death penalties all come down to massive fines with extra steps. If you want to “nuke” a corporation, revoke its licenses (not applicable here) or levy a massive fine.
[1] https://www.theatlantic.com/business/archive/2015/03/finland...
[2] https://www.theguardian.com/world/2017/nov/17/norwegian-heir...
It hasn’t even started accumulating. How are you declaring it won’t work?
Then you weren’t in a budgeting role. Multiple heads in Facebook’s Norwegian office will be on the line if they lose a double-digit fraction of profits. If you want headlines, go big and risk losing in court. If you want results, be smarter.
The way Oslo is playing it, this looks smart. They’re keeping it local to avoid jurisdictional challenges. And instead of a Vestager-Khan populist swing for the fences that entrenches both sides in litigation for years, it gives Meta a reasonable opening to actually change its behaviour in the short run.
Nobody ever gets fired for adverse policy environment, that’s bad fanfic.
Unless you throw an executive to prison like Brazil or force temporary shutdown like India or leverage three digit million fines like the EU … it’s all pocket money.
Also, if Facebook volunteers to pay a 100%+ effective tax rate in Norway…that seems fine for Norway?
> Finally, we note that Twitter assured the court that it would comply with the warrant by 5:00 p.m. on February 7, and never raised the possibility that it would defy the order for a month and end up owing the court “the entire world’s gross domestic product.”
This kind of thing, even though the details are different, is also why Kim Dotcom got arrested for violating US law despite not being in the US.
I'm also not sure if the courts in the US default to cooperating in such situations; I seem to remember something about Congress passing a law saying that Americans didn't need to pay fines for (libel?) imposed by (UK courts?) or something like that, suggesting that such was the default before then.
Instead fine them in the billions of dollars and at most in the tens of billions for repeated violations and privacy breaches just like what is happening to Google. [0]
[0] https://www.theverge.com/2023/8/7/23823878/google-privacy-tr...
* 98,500 a day = $35 million per year
* $35 million / (5 million Norway population * 85% assumption) = $8 / year fine per Norway user.
* I can't find Norway-specific revenue, but Meta's average revenue per user is $18 across Europe, but Norway could be higher than average. Outside Europe the highest is USA at $60. Assuming revenue / user is half way between this - $39 - this fine would be 20% of revenue.
* $39 per user would mean total revenue of $200m in Norway.
* Facebook turns 32 billion of revenue into 7.79 billion of net profit (24% of revenue to Net profit). This would mean profit of c£47m in Norway before the fine, and $12 billion after-fine.
This is with a fairly optimistic view of revenue per user - at the Europe average of $18 per user it would be a loss of $13m.
Another way to look at this is that if you population-adjust the fine to the world, it would be c$60 billion per year (although this is less accurate as it does not account for the fact that many regions have less users or are less profitable). Either way, Facebook can handle these fines in a handful of regions, but they can't handle these fines in all regions.
Just need EU countries to work together in a coordinated way so it starts having an effect on quarterly results. Rather than each fine being picked off one at a time.
There are lots of small, niche businesses that literally could not exist without this targeting.
e: Is the discussion in this thread really so without value that it should be hidden?
They were usually sued for corruption in developing countries to obtain contracts.
They were however sued in the US even though they are not headquartered there, had to pay huge fines that brought said companies to their knees and were later, surprisingly, bought by American companies.
Yes, the operation failed in the case of Airbus because they were smart enough to raise the issue themselves in the UK to avoid being sued in the US.
Alstom was bought by GE and Technip was bought by FMC Technologies.
> and also they literally were bribing politicians
Something that no US company has done in developing countries I'm sure.
In the case of GDPR-fines companies are literally laundering use data.
> In the case of GDPR-fines companies are literally laundering use data.
They are using the data in compliance with their ToS, which is decided post-facto to be in violation of the GDPR. The level of regulatory uncertainty there is far from the clear-cut “don’t bribe politicians.”
Could you give me some examples?
Also, US suing EU companies for things happening in developing countries is a mind blowing overreach of US territorial jurisdiction.
> They are using the data in compliance with their ToS
A ToS isn't a law.
> which is decided post-facto to be in violation of the GDPR
No. GDPR was introduced and companies were given years to adapt and become compliant.
> The level of regulatory uncertainty there is far from the clear-cut
This is also wrong. You can simply ask the EU member country's national agency responsible for the enforcement of the GDPR proactively.
> The level of regulatory uncertainty there is far from the clear-cut “don’t bribe politicians.”
In countries that run on bribes this becomes less clear.
I don't see it as overreach that the US does not let foreign companies that pay bribes compete in the US. Given that US companies cannot pay bribes legally, it would be hard for them to compete domestically with companies that can bribe simply because they are headquartered elsewhere.
> This is also wrong. You can simply ask the EU member country's national agency responsible for the enforcement of the GDPR proactively.
I am going to assume this one is a joke given the consistency (or lack thereof) of GDPR guidance from European regulators.
They were fined a third of what Alstom while having double the revenue.
This only happened because both Brazil and Algeria got involved.
> I don't see it as overreach that the US does not let foreign companies that pay bribes compete in the US.
But this is not competition in the US, it's competition abroad.
> Given that US companies cannot pay bribes legally
Which like Honeywell we know they absolutely do like every company operating in developing / BRICs countries.
> I am going to assume this one is a joke given the consistency (or lack thereof) of GDPR guidance from European regulators.
Yes and I'm sure that Google, Facebook & co were only caught on "technicalities" because the law wasn't "clear enough". If that is not a joke I don't know what is ...
I think you have a flawed conception of how fines are supposed to work…
> But this is not competition in the US, it's competition abroad.
Of course it is about competition in the US, otherwise they could freely exit the US market and not pay shit.
> Yes and I'm sure that Google, Facebook & co were only caught on "technicalities" because the law wasn't "clear enough". If that is not a joke I don't know what is ...
I mean, this whole conversation is about whether they are being targeted by regulators - your statement is question-begging.
Fine amounts are not related to company revenue but it gives you an idea of the impact it might have on the company and the sentencing differences when we are talking about an American company vs a foreign company.
> Of course it is about competition in the US, otherwise they could freely exit the US market and not pay shit.
No it's not. The only reason these companies comply is that the US has retaliatory tools outside of the US that are very powerful.
It has nothing to do with American contracts which represented a minor share of the revenue in the case of Alstom.
> I mean, this whole conversation is about whether they are being targeted by regulators - your statement is question-begging.
Yes, because they simply broke the law.
I mean Google is still sending data back to the US while this has been illegal since 2020.
And European companies are also sued for breaking GDPR. Recently, the CNIL fined Criteo, a French adtech company, for 40M€. Multiple other fines in the 1M+€ range (Carrefour, Total, AG2R…) for French companies.
You can go on Enforcement Tracker, you will find a lot of small fines against EU entities, and few but heavy fines against US entities. I don't think this is protectionism, but rather that EU companies fare better than US companies in environments with historically strong privacy laws, precisely because they are subject to these regulations from day 1.
> They are using the data in compliance with their ToS, which is decided post-facto to be in violation of the GDPR.
A ToS is a contract, and contracts can violate the law. Nothing surprising here.
Here is a quote from an MEP who helped design the EU DMA on deciding who counts as a gatekeeper:
"Let’s focus first on the biggest problems, on the biggest bottlenecks. Let’s go down the line—one, two, three, four, five—and maybe six with Alibaba. But let’s not start with number seven to include a European gatekeeper just to please Biden.”
It is hard for me to read that as suggesting anything but strongly protectionist motivations.
> A ToS is a contract, and contracts can violate the law. Nothing surprising here.
I don't disagree, merely with the suggestion that the regulatory framework the EU has set up, which is still actively being worked out in a patchwork of procedural decisions up until literally today, is as clear-cut as the US prohibition on bribery in the FCPA.
And when they do, I always click "reject all". I think most people would - which is why I guess some sites still try to use those dark patterns. I'm still waiting for a big regulatory fine to make an example. If a known company is fined almost out of existence due to lack of a reject button, I think there would be instant self-regulation here.
> For me anyway GDPR has been largely a waste of bureaucracy, a better effort would be to educate populous about what cookies are and how tracking works and the extent of the trackings etc - these stuff should be in High School curriculum already by now.
Don't confuse the GDPR with "cookie banners" though. That's the end user visible tip of the iceberg. The biggest premise (and in my opinion the genius of the regulation) is that the end user is not required to know or understand anything. Instead, the people handling their data should. And if nothing else, it really has forced everyone (often even outside the EU) to think twice about how their data is stored and retained. And that's huge positive even if cookies were never a thing in gdpr.
Didn’t the EU recently cut a deal where the data from EU can be transferred to US without any legal ramifications [1]? So then this just goes to show it’s just about adding another layer of bureaucracy instead of caring about protecting user data.
[1] https://www.politico.eu/article/eu-signs-off-on-data-transfe...
They are basically being forced to separate the part of their business that actually makes money from the part that users like and then forced to lose money on those users.
I would be fine about laws requiring facebook to be up front and clear about how they are using this data, but mandating free rider status seems a step too far.
While I don't think it will work on the scale FAANG wants (see e.g. Youtube premium), what is the legal roadblock to let users chose between tracking or paying for the service?
In Germany too, if I remember correctly.
But if you are so sure about this, please sue so we can get rid of these cookie walls!
It also requires a court to decide that your fee is a “reasonable” one and you cannot just refuse access outright - you must make your content available to the non-consenting user.
Regardless, all of this will be illegal anyways once the DMA comes into effect. And I still think, national exceptions aside, that my description of the current state of EU law was accurate:
"The prevalent regulatory approach in Europe is that currently advocated by the European Data Protection Board ('EDPB') in its Guidelines 05/2020 on Consent under Regulation 2016/679 whereby the EDPB provides in no uncertain terms that '[i]n order for consent to be freely given, access to services and functionalities must not be made conditional on the consent of a user to the storing of information, or gaining of access to information (paragraph 39 of the Guidelines)'." [0]
[0]: https://www.dataguidance.com/opinion/france-cnil-opens-door-....
The regulation is very clear: non-functionally-essential data processing requires explicit consent. If in doubt, err on the side of caution and use consent and opt-in rather than another legal basis such as legitimate interest. Business models based on stalking or spamming are no longer allowed.
Keep in mind that the objective of the regulation is not some punitive shake-down but to give people rights on how their data is used. A good-faith effort that accidentally falls short will be given guidance and a reasonable timeline to implement changes - there's no risk to ever get a fine as long as you err on the side of caution. You can also proactively ask your local regulator for guidance if something is unclear.
As I have said, this model attempts to enshrine free ridership, which might work while there is the rest of the world subsidizes it, but it is not a sustainable model to force tech companies to serve users at a loss.
The objective of the DMA which will serve to enshrine the illegality of these models is to target American tech companies and European legislators have explicitly stated as such.
No it doesn't - you can still charge for a service.
It just makes stalking/spamming an unviable method of payment.
Free access to global communication is not a bad thing.
But this is besides the point: the guidance is absolutely not clear and if local regulators cannot even get their story straight I am not sure how you expect foreign companies to figure it out. And collecting information about how users use your property is not stalking.
Advertisers aren't charities and the purpose of advertising is ultimately to drive profit. Subsidizing poor people is not in their interest.
The fact that poor people can currently access things for free is a result of imprecise targeting. If there was a way for advertisers to reliably tell apart poor people from the rich ones they'll happily block the poor ones.
Without laws like the GDPR in place to curtail data collection and profiling, it's only a matter of time before more and more data is collected to enable this kind of targeting and lock out poor people too.
> Free access to global communication is not a bad thing.
Global communication being subsidized (and thus controlled) by a handful of commercial interests is very dangerous.
> And collecting information about how users use your property is not stalking.
I'm not talking about basic self-hosted (very important difference!) web analytics or server logs here, I'm talking about large-scale stalking such as what Google/Facebook or any major ad provider does. The information they collect go way beyond what the user does on their platforms.
You are absolutely wrong about that and you do not understand the business model. I am not saying it has anything to do with the goodness of their heart but this is absolutely not something that would be in their interest. They benefit from the networks effects just like the users do.
> Advertisers aren't charities and the purpose of advertising is ultimately to drive profit. Subsidizing poor people is not in their interest.
It is possible for self-interested action to have knockoff positive effects. In fact, it is actually quite common: most exchanges are mutually beneficial.
> I'm not talking about basic self-hosted (very important difference!) web analytics or server logs here, I'm talking about large-scale stalking such as what Google/Facebook or any major ad provider does. The information they collect go way beyond what the user does on their platforms.
If you read my original comment, you would see that I am in favor of banning cross-site stalking but that is both not what Meta is being fined for here and not the only thing the GDPR/DMA prohibits.
Targeting based on only your own platform is a good middle ground.
I think it's still a problem because it's a grey area as to what "own platform" means exactly. Malicious actors will stretch that definition beyond what's reasonable.
Publicly-available data posted by the user seems fair, but things like scroll position, or the time you read a particular item, or forms typed but not submitted (all things I'm sure Facebook is absolutely collecting via client-side JS) should not be considered fair.
Either way, I'm personally in favour of ad-based business models getting shut down/being made unprofitable as it will ultimately realign the incentives, surface the true price of platforms and mean that we can finally have communication/entertainment tools that are designed with those primary purposes in mind as opposed to spam machines with the bare minimum amount of functionality sprinkled in. I want our online public squares to be accountable to their end-users rather than advertisers, and facilitate communication rather than outrage (what they call "engagement").
Not illegal then.
> The difference between targeting and not is the different between net profit or not for many users
I don't think it's a bad idea to have regulation that makes entire regions of an industry unprofitable over night, if that's what it takes.
Citation very very much needed as that is not at all what standard economic theory would predict.
As I said, there are lots of niche small businesses that literally could not survive without targeted advertising so that demand goes away as soon as these bans go into effect.
> I don't think it's a bad idea to have regulation that makes entire regions of an industry unprofitable over night, if that's what it takes.
Yes but I think if the choice were actually presented as “pay for FB or repeal this regulation” and the EU had a referenda on it, the regulation would be banned. The only way this is getting through is because the public is being convinced that they can have their cake and eat it too. They might be right, but only because they are being subsidized by users in the rest of the world.
That was assuming that the total ad spend is constant as a fraction of revenue and that revenue would be unchanged. If less effective ads overall would lead to lower revenues then the ad spends would shrink. But they would shrink equally for everyone, at least.
> there are lots of niche small businesses that literally could not survive without targeted advertising
There is nothing banning targeting. The problem is using info that users don't know/think is used for targeting, and using it for targeting. I'd be happy to take a 200 question survey as a condition for using facebook, where they ask me about my hobbies and whereabouts and clearly say it's for ad targeting. Obviously I could say "I'd rather not tell" instead of "I like guitars", but in such a scenario I'd happily give up my targeting info. But I don't want to be shown a guitar ad because I looked at one on an unrelated site with a facebook tracking pixel on it. It's absolutely dystopian.
> public is being convinced that they can have their cake and eat it too.
Yes I'm sure many think that. But I think the only way of changing the status quo is through heavy handed regulation and making initially impopular decisions and risking the death of a lot of business in the process.
Facebook are the ones who've structured their business like this though — they could profitable with a subscription model instead, they've just chosen to make their product free at the point of use.
There was a recent decision in France suggesting otherwise, but this is not the opinion of the primary EU regulatory guidance nor has it been seriously tested. Either way, it will become fully illegal to refuse under the DMA.
[0]: https://www.dataguidance.com/opinion/france-cnil-opens-door-....
A service provider must provide its offerings regardless of the user accepting to be tracked or not. The provider is not even allowed to make it cumbersome to opt out.
If Meta doesn't like it they're free to either be fined into oblivion or, alternatively, to just fuck off from the European market.
The law in question is quite unambiguous.
I mean, obviously they are compelled to do that and this is completely fine.
As users people should not be blackmailed into accepting psychological manipulation in their lives, just to be allowed to use a service. If Facebook's model for profit is so bad, that they cannot profit without manipulation, then perhaps their whole business is a shady one and they should start asking for membership fees. I could not care less, whether they need their pesky ads or the data from people viewing and interacting with them. Without consent they don't belong on the users' screens, end of story. If they cannot do business ethically, I wish they would not do business at all.
> I would be fine about laws requiring facebook to be up front and clear about how they are using this data, but mandating free rider status seems a step too far.
It has nothing to do with "free riding". They offer a service and that service should be worth its weight to the users. If it isn't, then apparently it is not a good enough service. To get back the money through the back door, by utilizing manipulation of users and spreading hate-speech for engagement metrics is not OK.
The fines seem to be leveled at Meta's local company in Norway. As I understand it, fines are not deductible in Norway.
(I am not an accountant, and my company has never gotten a find, but looking up this in the accounting system I use, it seems it is not deductible: https://kontohjelp.fiken.no/as/medMoms/7799?sok=7799 ( in Norwegian)).
If a company tried I think it should be viewed as contempt of court. A company trying to get money back for which it was fined would basically be them thumbing their nose at the fine. Maybe that is why fines are not deductible.
I've said it before and I'll say it again: the only way to make fines have any teeth for companies like this is for states to fine companies in equity, not cash. Shareholders will force change if the state might realistically become the majority shareholder and in doing so dilute everyone else's holding.
1% a week per breach ought to do it.
And well, we're living through a period where we're rapidly accruing evidence every day of how bad the alternative is.
For what it is worth, I'd like to see companies like Meta, Alphabet, and Amazon turned into global cooperatives governed by their employees and users. These would be the largest democracies the world has ever seen and would almost certainly be governed more sensibly than they are today.
Just levy a fine. From the corporate death penalty to this stuff, it’s all just fines with financial engineering. Cut out the bankers and lawyers and just levy a bloody fine.
Every problem you think you’re solving by adding extra steps simply compounds the complexity of levying massive fines while distracting from them.
Of course there is: who would buy shares that can be stolen by the state?
This is why moralisers shouldn't design systems: they miss even the most glaringly obvious consequences of their OTT punishments.
The idea of property is a legal one. It has no other basis in the world - if a democracy decides that property is forfeit if the law is broken, that is perfectly fine. See also, wealth taxes.
People already buy shares in these companies because they are profitable, and likely to remain so in the future. The problem is passive investment (which is forced on most people as pension funds don't "pass through" the right to vote) means people don't have to govern these organisations to protect the value of their investments. Fines are the cost of doing business.
If the stakes were "use it lawfully or lose it" the shareholders might realistically become more inclined to take action against boards who allow mismanagement. That's what this is, by the way: mismanagement with global consequences.
Investment won't go anywhere because people will always seek a return on their capital. The idea that they would rather see that capital inactive and atrophying over time rather than complying with simple and clear rules around corporate conduct is absurd.
I mean, it doesn't matter. The people with the jails are the people who write the rules that say how much of my effort I keep.
The difference is: we have a well-defined separation between money (a tool to communicate relative value) and ownership. Moving the government into the taking things you own business is a bad idea.
They aren't talking about anything like this. The companies can avoid turning over equity by not getting fined. I don't think this is quite the right approach, but I do think we should consider other options. For example, getting fined means that stockholders can't get payouts and execs couldn't get bonuses or anything outside of their base monetary salary. These sorts of things make it harder to just write off a fine as "cost of business" even if the fine itself is low.
Norway can do this to the Norwegian entity. It has no jurisdiction over the global company.
It is worth remembering that there's no such thing as a "global" company, by the way. These are largely American companies. They are structured to be unaccountable to other countries, and this is one of the ways in which american imperialism works.
Not how sovereignty works. Oslo’s extraterritorial enforcement is bound by treaties that set limits on what it can do. It ultimately requires others’ coöperation.
In practice, we delegate this to courts. The EU’s track record there is put to shame only by the FTC. Oslo, uniquely, seems to be ignoring the siren calls of fist pounding to populists in favour of prodding Facebook to change.
Do you disagree with corporations being held accountable, or do you have an alternative proposal that doesn't let them get away with murder, so to speak?
I genuinely don't understand how you read it this way. We already have mechanisms in place to punish companies, and send their directors to jail. Stealing them from their owners is the only thing I am criticising.
I mean, look:
> Making all companies state-owned might have some historically-evidenced downsides.
Where there do you read, "we should stop fining companies and holding their directors accountable"?
Added to my list of things to do if I ever become a dictator by chance.