It was recently reported that the Austrian’s data protection watchdog upheld a complaint against a website related to its use of Google Analytics.
Indeed, this entailed a red flag over routine use of tools that need transferring Europeans’ personal data to the US for processing. The watchdog found that IT address and identifiers in cookie data are the personal data of site visitors, hence all of these fall under the EU data protection law.
The Austrian DPA has then stated that the website has violated the EU’s General Data Protection Regulation (GDPR). It was also reported by the regulators that the measures implemented by Google to protect the data in the US were not sufficient to efficiently block US intelligence services from accessing the data that is required by GDPR’s standard.