Skip to content

EU Parliament Told to Fix Illegal Export of Covid Data to U.S.

  • Test data was sent via Google and Stripe tracking cookies
  • Privacy group Noyb publishes Jan. 5 order following complaint

The European Parliament was given a one-month ultimatum to fix a privacy flaw that allowed lawmakers’ Covid-19 test data to be illegally sent to the U.S. via tracking cookies owned by Google and digital payments company Stripe Inc.

The assembly hired a company in 2020 to provide mass testing via a dedicated website for members and officials, but failed to comply with strict curbs on transatlantic data flows, the privacy watchdog in charge of EU institutions found.