Privacy Ninja



        • Secure your network against various threat points. VA starts at only S$1,000, while VAPT starts at S$4,000. With Price Beat Guarantee!

        • API Penetration Testing
        • Enhance your digital security posture with our approach that identifies and addresses vulnerabilities within your API framework, ensuring robust protection against cyber threats targeting your digital interfaces.

        • On-Prem & Cloud Network Penetration Testing
        • Boost your network’s resilience with our assessment that uncovers security gaps, so you can strengthen your defences against sophisticated cyber threats targeting your network

        • Web Penetration Testing
        • Fortify your web presence with our specialised web app penetration testing service, designed to uncover and address vulnerabilities, ensuring your website stands resilient against online threats

        • Mobile Penetration Testing
        • Strengthen your mobile ecosystem’s resilience with our in-depth penetration testing service. From applications to underlying systems, we meticulously probe for vulnerabilities

        • Cyber Hygiene Training
        • Empower your team with essential cybersecurity knowledge, covering the latest vulnerabilities, best practices, and proactive defence strategies

        • Thick Client Penetration Testing
        • Elevate your application’s security with our thorough thick client penetration testing service. From standalone desktop applications to complex client-server systems, we meticulously probe for vulnerabilities to fortify your software against potential cyber threats.

        • Source Code Review
        • Ensure the integrity and security of your codebase with our comprehensive service, meticulously analysing code quality, identifying vulnerabilities, and optimising performance for various types of applications, scripts, plugins, and more

        • Email Spoofing Prevention
        • Check if your organisation’s email is vulnerable to hackers and put a stop to it. Receive your free test today!

        • Email Phishing Excercise
        • Strengthen your defense against email threats via simulated attacks that test and educate your team on spotting malicious emails, reducing breach risks and boosting security.

        • Cyber Essentials Bundle
        • Equip your organisation with essential cyber protection through our packages, featuring quarterly breached accounts monitoring, email phishing campaigns, cyber hygiene training, and more. LAUNCHING SOON.

Google, Apple Fined by Italian Authority for Aggressive Data Collection

Google, Apple Fined by Italian Authority for Aggressive Data Collection

Italy’s competition authority (Autorita Garante della Concorrenza e del Mercato) has announced a fine of 10 million Euros ($11.3 million) against Google and Apple.

The companies were fined due to violations of the Consumer Code involving lack of information on how personal data is used and aggressive consumer data acquisition practices for commercial purposes.

Also Read: What You Should Know About The Data Protection Obligation Singapore

Obscure data collection

As the Authority explains in the relevant announcement, its investigation has found that both Google and Apple do not provide clear information on how they collect data, what data they collect, and how exactly they’re using it.

The announcement claims Google omits all relevant information during the account creation phase and when people use the services themselves. While Apple does the same during the creation of the Apple ID and when accessing the App Store, iTunes, Apple Books, etc.

Users are reportedly seeing no indication of their data being collected and used for commercial purposes.

Instead, both tech firms only emphasize that data collection is necessary to improve the user’s experience.

Aggressive data collection

As the authority details further, the approach followed by Apple and Google on how they collect data is aggressive by default.

Google pre-sets the user’s acceptance to collect, transfer, and use their data for commercial purposes. While users can visit their Google account options menu and change this setting, the Authority states that many users do not ake changes due to a lack of knowledge or neglect.

In the case of Apple, the Authority finds that the user is only given an option to accept or reject their data to be used for commercial purposes, which is a powerful consent due to the broad spectrum covered by the generic term.

Because the users are conditioned to assume that rejecting this request will negatively affect how they experience Apple’s services, the majority accept it.

Also Read: The Difference Between GDPR And PDPA Under 10 Key Issues

Apple told BleepingComputer that they were appealing the decision and shared the following statement:

“We believe the Authority’s view is wrong and will be appealing the decision. Apple has a long-standing commitment to the privacy of our users and we work incredibly hard to design products and features that protect customer data. We provide industry-leading transparency and control to all users so they can choose what information to share or not, and how it is used.” – Apple.

We have contacted Google for comment on the above, but we have not heard back yet.

Amazon hammered too

On Tuesday, the same competition authority announced a massive 68.7 million Euros ($77.5 million) fine against Amazon, and a different 134.5 million Euros ($151.5 million) fine against Apple, alleging anti-competition practices.

As the announcement explained, Amazon and Apple maintained an agreement that prevented certain resellers of genuine Apple and Beats products from offering their merchandise on

According to the Italian authority, the result of this practice is fixed prices in the national market and the artificial creation of a watertight segment, preventing “foreign” healthy competition from having price-dropping effects.

The authority says this is a violation of article 101 of the Treaty on the Functioning of the European Union, which triggered similar investigations by the national competition authorities of Germany and Spain.

The two firms stated they would appeal the decision in response to this announcement as they found it wrong and unjust.

As they claimed, the goal of their collaboration was to ensure customer safety by preventing the sale of counterfeit Apple products on the Amazon marketplace.



Subscribe to our mailing list to get free tips on Data Protection and Data Privacy updates weekly!

Personal Data Protection


We have assisted numerous companies to prepare proper and accurate reports to PDPC to minimise financial penalties.


Click one of our contacts below to chat on WhatsApp

× Chat with us