The Socio-Economic Rights and Accountability Project (SERAP) has called upon Mark Zuckerberg, the Chairman and CEO of Meta Platforms Incorporated, to promptly pay a hefty fine of $220 million imposed by the Federal Competition and Consumer Protection Commission (FCCPC) of Nigeria. This fine was recently upheld by the Competition and Consumer Protection Tribunal, following serious violations of Nigerian consumers' data protection and privacy laws. SERAP is not just asking for the fine to be paid; they are also demanding justice and effective remedies for the victims affected by these grave violations.
In a letter sent over the weekend, which was signed by Kolawole Oluwadare, SERAP’s deputy director, the organization urged Zuckerberg and Meta to provide adequate compensation and guarantees of non-repetition for the affected individuals. They implored that the company must also pay an additional $35,000 awarded by the Tribunal to cover the costs of the investigation. SERAP emphasized the need for Zuckerberg to ensure accountability for those responsible for the violations and to halt any ongoing breaches.
Last Friday, April 25, 2025, the Tribunal upheld the significant fine against Meta, reinforcing the need for the company to comply with Nigerian laws concerning consumer data protection. SERAP's letter highlighted the importance of enhanced transparency and human rights due diligence by Meta, urging the tech giant to take responsibility for its actions.
Meanwhile, the introduction of a new AI feature in WhatsApp by Meta has sparked frustration among users. Many are expressing concerns that the company may be using their private chats to train the AI chatbot, which has raised significant privacy issues. Users are currently unable to remove this feature, leading to a growing sense of unease regarding the handling of their personal information.
Meta has responded to these concerns by stating that the AI chatbot cannot read messages unless a participant in the chat chooses to share them. They have also assured users that they are “listening to feedback” regarding the new feature. However, the lack of control over this AI integration has left many users feeling vulnerable and anxious about their data privacy.
In another significant legal development, the Higher Regional Court (OLG) of Frankfurt am Main ruled that online platforms must ensure that their default settings protect users' personal data from being publicly accessible without consent. This decision, made on April 8, 2025, against Meta, was based on the principle of data minimization outlined in the General Data Protection Regulation (GDPR). The court found that Meta had violated these requirements, as users could only achieve the necessary privacy protection by changing their default settings individually.
The court ordered Meta to pay the plaintiff 200 euros in damages, recognizing the psychological harm caused by the breach. The plaintiff had expressed fears that her data could be misused by third parties, particularly on the darknet. This ruling follows a previous rejection of the case by the Wiesbaden Regional Court in April 2023, highlighting the evolving legal landscape regarding data protection.
Furthermore, tens of thousands of Facebook users have initiated lawsuits against Meta for data scraping, a controversial practice that involves the automatic reading and processing of publicly visible data. This has raised alarms especially after an incident in 2021, where approximately 533 million data records containing personal information of Facebook users from 106 countries were exposed online. Legal experts point out that such practices are prohibited under GDPR without explicit consent from the data subjects.
The Irish Data Protection Authority (DPC) previously imposed a fine of €265 million on Meta in 2022 due to this incident, further underscoring the scrutiny the company faces regarding its data handling practices. The Higher Regional Court's ruling emphasizes that Meta must take precautions to prevent unauthorized access to users' personal data, particularly in light of the risks associated with data scraping.
As Meta navigates these legal challenges and user dissatisfaction, the company’s commitment to data protection and user privacy is under intense scrutiny. SERAP's call for accountability and the recent court rulings signal a growing demand for tech companies to adhere to stricter data protection regulations and to prioritize user rights.
The ongoing developments in Nigeria regarding Meta's compliance with data protection laws and the backlash from WhatsApp users regarding the AI feature reflect a broader global conversation about privacy, accountability, and the ethical responsibilities of tech giants. As users become increasingly aware of their rights and the implications of data misuse, the pressure on companies like Meta to foster transparency and ethical practices in their operations is likely to intensify.
In light of these events, it remains to be seen how Meta will respond to the mounting legal challenges and user concerns. The company’s ability to navigate these issues while maintaining user trust will be crucial for its future operations and reputation in the global market.
