惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

大猫的无限游戏
大猫的无限游戏
Security Archives - TechRepublic
Security Archives - TechRepublic
T
Threat Research - Cisco Blogs
A
Arctic Wolf
S
Securelist
O
OpenAI News
T
Threatpost
Forbes - Security
Forbes - Security
N
News and Events Feed by Topic
S
Secure Thoughts
H
Heimdal Security Blog
S
Security Affairs
P
Privacy International News Feed
C
Cisco Blogs
C
CERT Recently Published Vulnerability Notes
Cyberwarzone
Cyberwarzone
N
News and Events Feed by Topic
Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
P
Palo Alto Networks Blog
S
Security @ Cisco Blogs
Hacker News - Newest:
Hacker News - Newest: "LLM"
博客园 - 三生石上(FineUI控件)
月光博客
月光博客
T
Tailwind CSS Blog
Exploit-DB.com RSS Feed
Exploit-DB.com RSS Feed
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
Hacker News: Ask HN
Hacker News: Ask HN
T
Troy Hunt's Blog
S
SegmentFault 最新的问题
腾讯CDC
V
Visual Studio Blog
Last Week in AI
Last Week in AI
H
Hacker News: Front Page
cs.CV updates on arXiv.org
cs.CV updates on arXiv.org
OSCHINA 社区最新新闻
OSCHINA 社区最新新闻
Project Zero
Project Zero
WordPress大学
WordPress大学
NISL@THU
NISL@THU
博客园 - 【当耐特】
博客园 - Franky
Webroot Blog
Webroot Blog
博客园_首页
T
Tenable Blog
雷峰网
雷峰网
Google Online Security Blog
Google Online Security Blog
阮一峰的网络日志
阮一峰的网络日志
V2EX - 技术
V2EX - 技术
Recent Commits to openclaw:main
Recent Commits to openclaw:main
L
Lohrmann on Cybersecurity
The Hacker News
The Hacker News

Blog of Simple Analytics

The EU wants to kill cookie banners Google is tracking you (even when you use DuckDuckGo) German court rules Meta’s tracking tech violates GDPR Closing the data gap - Simple Analytics x Usercentrics The EU-US data deal may be dead in the water You are missing 20% of your website data with GA4 How a reverse trial will push Simple Analytics to the next level Google will start tracking all your devices (WTF?) Big Tech Fails EU’s Digital Services Act: Only Wikipedia Passes the Test Meta fined $102 million by the Irish Data Protection Commission Europeans spend 575 Million hours per year clicking cookie banners The most interesting GDPR fines GDPR and fines: all there is to know Google loses key antitrust case Web Analytics for Crypto Companies Web analytics for publishers Google pulls Uno Reverse card: Rolls back decision to kill third-party cookies Privacy Monthly July 2024 Privacy Perspectives June 2024 Privacy Monthly June APRA fumbles targeted advertising Privacy Monthly May Meta loses key privacy battle Google delays cookie phase-out once again Privacy Monthly April 2024 Web Analytics and Consent Cookies 101 Privacy Monthly March 2024 German authority cracks down on cookie banners Google Tag Manager vs Google Analytics Google search alternative Data retention in Google Analytics Guide to Google Analytics and Cookie consent What are Google Analytics' identifiers? How to export data from Google Analytics Privacy Monthly February 2024 The Criteo case: a big deal for Big Tech Privacy Monthy January 2024 Google Settles in $5B Incognito Mode Lawsuit Legal troubles for Adobe Analytics Web analytics for nonprofits HIPAA and mental health Why Meta subscriptions are under attack, and why it matters for privacy Privacy Monthly: December Simple Analytics AI Host analytics on Cloudflare Zaraz Add Google Analytics to Convertkit Google Analytics Pricing - Paid vs Free Road to 1 Million ARR - October update CCPA and Data Protection: all there is to know Analytics without a cookie banner Enterprise Analytics Privacy Monthly: November 2023 Delete Act: all you need to know Mobile App Tracking Under Fire The road to 1 Million ARR - September Update Privacy Monthly: October 2023 HIPAA violations First challenge to the EU-US data transfer framework Direct Marketing under GDPR Road to 1 million ARR - August Update CCPA vs CPRA: what is new? Privacy Monthly: September 2023 A/B Testing with Simple Analytics Dobbs v. Jackson ruling is a privacy mess Privacy Monthly: August 2023 What are your rights under the CCPA? When does the CCPA apply? How does the HIPAA compare to the CCPA and GDPR? Why Meta is in a world of trouble CJEU: cookie-based analytics collects sensitive data Road to 1 million ARR - July update All about the new Data Transfer Framework Road to 1 Million ARR - June update What is PHI under HIPAA? Sweden declares Google Analytics illegal Searching for GA4 Alternatives? Top 10 Reliable Options for Google Analyticss Ultimate HIPAA Compliance Checklist: Essential Steps for Healthcare Providers Privacy Monthly: June 2023 More troubles for Google Analytics The path to 1M ARR - May Update Data Processing Agreements Minimal Product Analytics Facebook data transfers declared illegal Is Google Analytics CCPA-compliant? Help us with your input Cookie banners: How to stay GDPR compliant? GDPR Compliance Checklist Privacy Monthly: May 2023 Simple Analytics: Privacy-first website analytics Improve your e-commerce performance with analytics European Facebook blackout is closer than we think Know your website’s Carbon Emissions - and how to reduce it The path to 1M ARR - April 2023 How to add video tracking using Google Tag Manager? How to track form submissions using Google Tag Manager? Why is my Simple Analytics data different from Google Analytics? Debug Simple Analytics script How to Import Google Analytics Data to Simple Analytics
What the Digital Markets Act means for privacy
Carlo Cilent · 2024-01-08 · via Blog of Simple Analytics

In 2022 the European Union approved the Digital Markets Act after long negotiations. The Regulation entered force last May, and some important steps towards its implementation were taken in September.

On the surface, this law doesn’t have much to do with privacy. But in practical terms, it could be really, really important. Here’s what the Digital Markets Act says and why it matters.

  1. What is the Digital Markets Act?
  2. When does the Digital Markets Act apply?
  3. Why these companies?
  4. What does the Digital Markets Act say?
  5. Why does the Digital Markets Act matter for privacy?

The UK Government chose Simple AnalyticsJoin them

What is the Digital Markets Act?

The DMA is an antitrust law that aims to make key online markets fair and contestable by telling monopolists such as Google and Meta what they can and cannot do when dealing with both their users and the businesses that advertise their services on their platforms.

When does the Digital Markets Act apply?

The DMA only applies to a very small number of companies that fit very specific criteria. These criteria are assessed and periodically re-assessed by the European Commission.

Right now, the Act only covers six companies: GAFAM (Google, Apple, Meta, Amazon and Microsoft) and TikTok owner ByteDance. Not all services from these companies are covered by the act: for instance, Windows and LinkedIn are covered by the DMA, but Edge and Bing were spared- presumably because Google controls the browser and web search markets almost entirely.

Why these companies?

The DMA mainly aims to regulate core platforms that serve as key intermediaries between businesses and users: think of Facebook, Google Search, the Amazon Store, TikTok, and so on. The companies under the DMA are not simply Big Tech: they are monopolizing the Internet and becoming a chokepoint for the online economy- and, by extension, a good chunk of all retail economy!

This is why Netflix and Spotify do not fall under the Act despite their size, turnover, and user base.

It is an open secret that the EU first decided to target specific platforms and then came up with criteria to capture them within the Act without naming names. The US Congress is not happy that most of the companies are American and is accusing the EU of protectionism. Then again, better enforcement of US antitrust law would have prevented some GAFAM from becoming such a huge political issue in the first place.

What does the Digital Markets Act say?

The DMA includes a long list of rules. A comprehensive overview can be found on the European Commission’s website.

These are some of the key points:

  • certain anticompetitive strategies are no longer allowed. For instance, Amazon can no longer favor its own products on the Amazon Store or fix prices outside the Store by imposing a favored nation clause
  • interoperability and data portability become mandatory in certain scenarios
  • companies must share certain data with competitors

In some important ways, the DMA goes above and beyond traditional antitrust law by forcing monopolists to actively foster competition in markets where there is little or none. In other words, antitrust law is traditionally made of “dont’s”, but the DMA includes a lot of “do’s” as well.

All these “do’s” are stabs at the monopolistic business model of Big Tech. For instance, search engines (read: Google Search, as it is the only search engine falling under the Act!) will be under an obligation to **share raking and query data with competitors **under fair, reasonable, and non-discriminatory terms. Query data are some of Google’s most precious information and a core element of its data advantage over competitors!

Likewise, mandating interoperability and data portability reduces the switching costs for the end users. In other words, it makes it easier for users to move to a different service- and harder for the dominant platforms to retain them through the “lock-in effect.”

All of these “do’s” are very important! To a large extent, the Act’s success will depend on the EU Commission’s ability and willingness to firmly enforce both the “do’s” and the “dont’s” of the Act.

Why does the Digital Markets Act matter for privacy?

Online privacy and competition are inextricably linked, and we need both for a better Internet.

We often say that the public is increasingly concerned with privacy. And yet, surveillance machines like Facebook and Google are not losing an inch of their market share. How come?

Because consumers have nowhere else to go. The products you like are on Amazon, your friends are on Instagram, your parents are on Facebook, and your coworkers communicate via WhatsApp. By deliberate design, none of these services is interoperable with anything else (Whatsapp gets a pass because of encryption, but the others have no excuse). The idea that you can stop using these services is a convenient fiction to justify deeply unfair terms under the pretense that you are free to refuse them- as highlighted by two recent legal actions against Meta.

Tech giants spent years crushing competitors through unfair commercial practices and buying out the survivors (see Instagram). Now, they get to make the rules. And the rules always include unfair and borderline criminal privacy policies (yes, even Apple’s- don’t believe their privacy claims).

The monopolization of the Internet is the reason we are stuck with Big Tech and its data-hungry, privacy-invasive services. If Facebook faced real competition, half its user base would have left after Edwards Snowden’s revelations, and the other half would have left after Cambridge Analytica.

If iOS and Android faced real competition, few consumers would buy phones with illegal advertising trackers.

And if YouTube faced real competition, users would not be stuck on a platform that snoops into their browsers and punishes them for using ad blockers.

The DMA promises to change that. The Act acknowledges that the current state of key online markets is not ok. The privacy cost of a monopolized Internet is simply not sustainable long term. The same goes for other economic and social costs, such as the decreasing variety in market offers, the unfair and predatory treatment of businesses, and the pitiful remuneration of content creators.

The DMA is expressly looking to stop this by cutting digital behemoths down to size. Should it succeed, better privacy will be one of the many benefits to reap.