LONDON – Gay dating app Grindr faces a fine of more than $10 million from Norwegian regulators for failing to get consent from users before sharing their personal information with advertising companies, in breach of stringent European Union privacy rules.
The Norwegian data privacy watchdog said Tuesday that it notified Grindr LLC of its draft decision to issue a fine for 100 million Norwegian krone ($11.7 million), equal to 10% of the U.S. company's global revenue.
The Data Protection Authority took action following a complaint by the Norwegian Consumer Council alleging personal data was shared unlawfully for marketing purposes. The council had detailed in a report last year how Grindr and other dating apps leaked personal information to advertising technology companies for targeted ads in ways the council said violated the EU's tough GDPR privacy rules.
Norway isn't a member of the EU but closely mirrors the bloc's rules and regulations.
“The Norwegian Data Protection Authority considers that this is a serious case," said Director-General Bjorn Erik Thon. “Users were not able to exercise real and effective control over the sharing of their data."
The company has until Feb. 15 to give feedback, which the watchdog will take into account for its final decision.
The app's privacy approach includes “detailed consent flows, transparency, and control" provided to all users, the company said, adding it has “retained valid legal consent" from all its European users “on multiple occasions."