French consumer group sues Google, Facebook and Twitter over privacy policies

In a civil action, UFC-Que Choisir is asking the three social networks to make their user agreements clearer and fairer

French consumer protection group UFC-Que Choisir has issued Facebook, Twitter and Google with a summons to appear before the Paris High Court, which it has asked to strike out what it says are unfair or illegal clauses in the companies' user agreements.

The group said the three companies had not reacted to letters its lawyers sent last June asking them to modify the agreements governing how they handle users' personal information. The terms and conditions are still just as unreadable, with up to 100 hypertext links, many of them to pages that are not in French, it said Tuesday.

The way the contracts are presented is a problem, said UFC-Que Choisir legal counsel Amal Taleb, because French law requires that they be written in French, and users have no idea whether the documents linked to, some of which also contain hyperlinks, form part of the agreement.

The group wants the companies to make their user agreements shorter and clearer, putting them on a single page and, crucially, emailing users a copy of the contract as it stands at the moment they agree to it, she said. That's because the companies often modify their terms and conditions, only publishing the latest terms on their site. They do so without renewed agreement from users, and without providing sufficient notice -- or indeed without any notice -- of the changes. Facebook, for example, has given only seven days' notice of some changes to its terms and conditions, while French law considers at least one month reasonable, Taleb said.

Despite the letters sent last June, the agreements continue to authorize the companies to collect, modify, store and exploit information about users and their social network, the group said. A particular problem, it said, is the way the companies grant themselves an unlimited, worldwide license to use or share the information with their business partners, without the explicit agreement of users.

Among other things, that could be in breach of French intellectual property law that gives the creators of works such as texts and photos certain rights over them, Taleb said.

As a result, UFC-Que Choisir is asking the judge to order the companies to delete the clauses it considers illegal or abusive -- 180 of them in the case of one company.

The group's summonses are on their way to the headquarters of Google and Twitter in the U.S., and to Facebook's office in Ireland, to which the company has designated control of the personal information of users outside the U.S., Taleb said, although the companies are already aware of the legal action, she said.

The three companies did not immediately respond to requests for comment.

The companies have an opportunity to provide written responses to UFC-Que Choisir and to the court, which can also seek clarification from all parties, Taleb said, so it may be some months before the judge makes a ruling.

Peter Sayer covers open source software, European intellectual property legislation and general technology breaking news for IDG News Service. Send comments and news tips to Peter at

Join the CSO newsletter!

Error: Please check your email address.

Tags securityCivil lawsuitslegaltwitterprivacyFacebook

More about FacebookGoogleIDGindeed

Show Comments

Featured Whitepapers

Editor's Recommendations

Solution Centres

Stories by Peter Sayer

Latest Videos

  • 150x50

    CSO Webinar: The Human Factor - Your people are your biggest security weakness

    ​Speakers: David Lacey, Researcher and former CISO Royal Mail David Turner - Global Risk Management Expert Mark Guntrip - Group Manager, Email Protection, Proofpoint

    Play Video

  • 150x50

    CSO Webinar: Current ransomware defences are failing – but machine learning can drive a more proactive solution

    Speakers • Ty Miller, Director, Threat Intelligence • Mark Gregory, Leader, Network Engineering Research Group, RMIT • Jeff Lanza, Retired FBI Agent (USA) • Andy Solterbeck, VP Asia Pacific, Cylance • David Braue, CSO MC/Moderator What to expect: ​Hear from industry experts on the local and global ransomware threat landscape. Explore a new approach to dealing with ransomware using machine-learning techniques and by thinking about the problem in a fundamentally different way. Apply techniques for gathering insight into ransomware behaviour and find out what elements must go into a truly effective ransomware defence. Get a first-hand look at how ransomware actually works in practice, and how machine-learning techniques can pick up on its activities long before your employees do.

    Play Video

  • 150x50

    CSO Webinar: Get real about metadata to avoid a false sense of security

    Speakers: • Anthony Caruana – CSO MC and moderator • Ian Farquhar, Worldwide Virtual Security Team Lead, Gigamon • John Lindsay, Former CTO, iiNet • Skeeve Stevens, Futurist, Future Sumo • David Vaile - Vice chair of APF, Co-Convenor of the Cyberspace Law And Policy Community, UNSW Law Faculty This webinar covers: - A 101 on metadata - what it is and how to use it - Insight into a typical attack, what happens and what we would find when looking into the metadata - How to collect metadata, use this to detect attacks and get greater insight into how you can use this to protect your organisation - Learn how much raw data and metadata to retain and how long for - Get a reality check on how you're using your metadata and if this is enough to secure your organisation

    Play Video

  • 150x50

    CSO Webinar: How banking trojans work and how you can stop them

    CSO Webinar: How banking trojans work and how you can stop them Featuring: • John Baird, Director of Global Technology Production, Deutsche Bank • Samantha Macleod, GM Cyber Security, ME Bank • Sherrod DeGrippo, Director of Emerging Threats, Proofpoint (USA)

    Play Video

  • 150x50

    IDG Live Webinar:The right collaboration strategy will help your business take flight

    Speakers - Mike Harris, Engineering Services Manager, Jetstar - Christopher Johnson, IT Director APAC, 20th Century Fox - Brent Maxwell, Director of Information Systems, THE ICONIC - IDG MC/Moderator Anthony Caruana

    Play Video

More videos

Blog Posts