Social Media Networks Generally Comply with GDPR Access Rules, French Regulator Says
Social media networks have adopted between 44% and 76.5% of practices recommended for complying with the General Data Protection Regulation's data subject access rules, French privacy watchdog CNIL said Thursday in an unofficial translation.
Sign up for a free preview to unlock the rest of this article
A CNIL study on right of access and social media aimed at highlighting good practices and encouraging networks to improve user experience. Right of access lets users: discover if their personal data is being processed, monitor the accuracy of information collected and, if needed, have the data erased or corrected.
CNIL's Digital Innovation Laboratory (LINC) examined how the most popular social networks in France and elsewhere in Europe deal with requests for access to copies of personal data. The platforms studied were Discord, Facebook, Instagram, LinkedIn, Meta, Pinterest, Snapchat, TikTok, Twitch, X and YouTube.
The analysis found: (1) On average, it took four clicks for users to access the request form starting from a network's home page. (2) The average time it took to receive the data was 19 hours and 23 minutes. (3) All the companies used practices such as automated access paths. (4) Each of the social networks studied needs improvement, such as adapting information to minors.