CJEU: Displaying an advertisement in the guise of an e-mail without users’ consent is an unfair commercial practice

CJEU: Displaying an advertisement in the guise of an e-mail without users’ consent is an unfair commercial practice

By a decision of November 25, 2021, the Court of Justice of the European Union (CJEU) ruled that the practice of displaying an advertisement under the appearance of an e-mail in the users’ e-mail box is subject to the prior information and consent of the users (as required under directive 2002/58/EC), without which it also constitutes an unfair commercial practice insofar as this practice corresponds to the notion of “repeated and unwanted solicitations” within the meaning of the Directive 2005/29/EC (“Unfair Commercial Practices Directive”) .

The CJEU Sets Its Standards For Obtaining A Valid GDPR Consent

The CJEU Sets Its Standards For Obtaining A Valid GDPR Consent

By Decision of 11 November 2020 (C-61/19), the Court of Justice of the European Union (CJEU) specified the conditions applicable to obtain a GDPR compliant consent. 

Indeed, the Court ruled that the data subjects’ consent to the processing of their personal data was not valid in the following cases:

where the controller (i.e., Orange România) pre-ticked the consent box referring to a clause contained in a contract and stating that the customer has consented to the collection and storage of their personal data (in this case, their identity document); or

where it was not clear as to whether individuals could refuse the processing operations without suffering any consequences on the possibility to conclude the service agreement; or

where the individuals’ freedom of choice could be affected by requiring the individuals to complete an additional form to refuse the processing of personal data

Germany-Antitrust Law: Facebook’s Wrongful GDPR Practice Hinders Competition

Germany-Antitrust Law: Facebook’s Wrongful GDPR Practice Hinders Competition

By a decision of 23 June 2020, the German Federal Supreme Court provisionally confirms the allegation of abuse of a dominant position by Facebook because its users were not given the choice over the level of personalisation of their Facebook experience, which entails the collection of data from sources outside the Facebook network (e.g. Instragram, internet browsing etc.).

The Court considered that Facebook practice may hinder the competition in the social network and online advertising market due to its dominant position and provisionally upheld the decision of the German Federal Cartel Office (“Bundeskartellamt”) prohibiting Facebook from processing personal data collected outside the Facebook environment without the users’ additional consent.

This decision is interesting as it shows that in certain cases a breach of GDPR provisions may also have consequences on competition law matters.