Mozilla faces EU privacy complaint over Firefox tracking technology

Mozilla, the nonprofit organization behind the Firefox browser, is facing a privacy complaint from the European Union privacy rights group noyb. The complaint alleges that Mozilla has violated the General Data Protection Regulation (GDPR) by enabling a new feature called Privacy Preserving Attribution (PPA) by default, which tracks users without their explicit consent. This feature is criticized for potentially transforming Firefox into a tracking tool for websites, despite Mozilla's reputation for prioritizing user privacy. Noyb argues that the implementation of PPA does not replace existing cookie-based tracking methods, but rather adds another layer of tracking, which could infringe on user rights under the GDPR. The complaint highlights that Mozilla failed to inform users adequately about the processing of their personal data and employed an opt-out mechanism instead of an opt-in, which is deemed insufficient under EU regulations. This has raised concerns about user autonomy and the ethical implications of such tracking practices. In response, Mozilla stated that it has only conducted limited testing of the PPA feature and that it is designed to enhance privacy by using cryptographic techniques to aggregate data without identifying individuals. The company acknowledged shortcomings in its communication regarding the feature and expressed a commitment to improving engagement with users and stakeholders. The outcome of this complaint could lead to significant changes in Mozilla's approach to user tracking and privacy, as well as potential penalties under the GDPR, which allows fines of up to 4% of global revenue. Mozilla's actions will be closely monitored by EU regulators and privacy advocates as the situation develops.