• Mehr als 3 Millionen Wörter Inhalt
  • |
  • info@itmedialaw.com
  • |
  • Tel: 03322 5078053
Rechtsanwalt Marian Härtel - ITMediaLaw

No products in the cart.

  • en English
  • de Deutsch
  • Informationen
    • Ideal partner
    • About lawyer Marian Härtel
    • Quick and flexible access
    • Principles as a lawyer
    • Why a lawyer and business consultant?
    • Focus areas of attorney Marian Härtel
      • Focus on start-ups
      • Investment advice
      • Corporate law
      • Cryptocurrencies, Blockchain and Games
      • AI and SaaS
      • Streamers and influencers
      • Games and esports law
      • IT/IP Law
      • Law firm for GMBH,UG, GbR
      • Law firm for IT/IP and media law
    • The everyday life of an IT lawyer
    • How can I help clients?
    • Testimonials
    • Team: Saskia Härtel – WHO AM I?
    • Agile and lean law firm
    • Price overview
    • Various information
      • Terms
      • Privacy policy
      • Imprint
  • Services
    • Support and advice of agencies
    • Contract review and preparation
    • Games law consulting
    • Consulting for influencers and streamers
    • Advice in e-commerce
    • DLT and Blockchain consulting
    • Legal advice in corporate law: from incorporation to structuring
    • Legal compliance and expert opinions
    • Outsourcing – for companies or law firms
    • Booking as speaker
  • News
    • Gloss / Opinion
    • Law on the Internet
    • Online retail
    • Law and computer games
    • Law and Esport
    • Blockchain and web law
    • Data protection Law
    • Copyright
    • Labour law
    • Competition law
    • Corporate
    • EU law
    • Law on the protection of minors
    • Tax
    • Other
    • Internally
  • Podcast
    • ITMediaLaw Podcast
  • Knowledge base
    • Laws
    • Legal terms
    • Contract types
    • Clause types
    • Forms of financing
    • Legal means
    • Authorities
    • Company forms
    • Tax
    • Concepts
  • Videos
    • Information videos – about Marian Härtel
    • Videos – about me (Couch)
    • Blogpost – individual videos
    • Videos on services
    • Shorts
    • Podcast format
    • Third-party videos
    • Other videos
  • Contact
Kurzberatung
  • Informationen
    • Ideal partner
    • About lawyer Marian Härtel
    • Quick and flexible access
    • Principles as a lawyer
    • Why a lawyer and business consultant?
    • Focus areas of attorney Marian Härtel
      • Focus on start-ups
      • Investment advice
      • Corporate law
      • Cryptocurrencies, Blockchain and Games
      • AI and SaaS
      • Streamers and influencers
      • Games and esports law
      • IT/IP Law
      • Law firm for GMBH,UG, GbR
      • Law firm for IT/IP and media law
    • The everyday life of an IT lawyer
    • How can I help clients?
    • Testimonials
    • Team: Saskia Härtel – WHO AM I?
    • Agile and lean law firm
    • Price overview
    • Various information
      • Terms
      • Privacy policy
      • Imprint
  • Services
    • Support and advice of agencies
    • Contract review and preparation
    • Games law consulting
    • Consulting for influencers and streamers
    • Advice in e-commerce
    • DLT and Blockchain consulting
    • Legal advice in corporate law: from incorporation to structuring
    • Legal compliance and expert opinions
    • Outsourcing – for companies or law firms
    • Booking as speaker
  • News
    • Gloss / Opinion
    • Law on the Internet
    • Online retail
    • Law and computer games
    • Law and Esport
    • Blockchain and web law
    • Data protection Law
    • Copyright
    • Labour law
    • Competition law
    • Corporate
    • EU law
    • Law on the protection of minors
    • Tax
    • Other
    • Internally
  • Podcast
    • ITMediaLaw Podcast
  • Knowledge base
    • Laws
    • Legal terms
    • Contract types
    • Clause types
    • Forms of financing
    • Legal means
    • Authorities
    • Company forms
    • Tax
    • Concepts
  • Videos
    • Information videos – about Marian Härtel
    • Videos – about me (Couch)
    • Blogpost – individual videos
    • Videos on services
    • Shorts
    • Podcast format
    • Third-party videos
    • Other videos
  • Contact
Rechtsanwalt Marian Härtel - ITMediaLaw

OLG rejects DSGVO claims due to scraping at Facebook

7. September 2023
in Data protection Law
Reading Time: 4 mins read
0 0
A A
0
dsgvo 3589608 1280
Key Facts
  • Hamm Higher Regional Court dismisses claim for damages under GDPR; immaterial damage insufficiently demonstrated
  • Data of 500 million Facebook users published on the darknet; allegation of scraping by unknown persons.
  • Plaintiff claimed 1,000 euros in damages for non-material damage in connection with Meta.
  • Higher Regional Court finds that Meta violated GDPR, but could not prove immaterial damages
  • Illegal processing of the cell phone number without effective consent was detected.
  • Court recognizes breach of duty, but no compensation; psychological impairments were not sufficiently proven.
  • The amount in dispute for the proceedings was estimated at EUR 3,000; an appeal was not permitted.

Things are not going well for law firms that have collected masses of alleged clients for DSGVO claims against Facebook. This is because the Higher Regional Court of Hamm has issued its first ruling on the so-called Facebook scraping cases and dismissed a claim for payment of damages under the General Data Protection Regulation(GDPR). According to the ruling, there have been violations of data protection regulations, but the plaintiff was unable to sufficiently demonstrate non-material damage.

In April 2021, unknown persons published the data of about 500 million Facebook users on the darknet, including names and phone numbers. The unknown persons had previously collected the data over a longer period of time, initially by exploiting Facebook’s search functions at the time, which is why the term “scraping” is used. Even if the display of one’s own phone number was not activated on Facebook, it was possible to identify a user via an entered phone number using the search function. The unknown “scrapers” exploited this by generating millions of telephone numbers with the computer and retrieving data for this purpose. Facebook disabled the phone number search feature in April 2018. A subsequent customized scraping process that exploited Facebook’s contact import feature was followed by further data grabs until Facebook also disabled this feature on the platform in October 2018 and on Facebook Messenger in September 2019.

With regard to this “data leak”, numerous lawsuits are pending against Meta as the operator of the platform throughout Germany, including in the district of the Higher Regional Court of Hamm, for which the first decision has now been issued. In it, the 7th Civil Senate, which is responsible for the law of torts, clarifies numerous legal issues in connection with the scraping lawsuits.

The plaintiff in the case that has now been decided was also affected by the scraping. The record published on the darknet included her cell phone number, first and last name, and gender information. The plaintiff has demanded compensation from Meta as operator of the platform for immaterial damages similar to damages for pain and suffering in the amount of at least 1,000 euros, among other things. It took the view that the operator of the platform had violated various data protection provisions from the GDPR both in connection with the scraping and independently of it. Meta has countered this.

The Bielefeld Regional Court had rejected the claim. The appeal filed by the plaintiff has now been unsuccessful before the Higher Regional Court of Hamm. It is true that the Higher Regional Court found violations of the GDPR. However, it was not convinced that the plaintiff had suffered any non-material damage.

With regard to the identified violations of the GDPR, the Higher Regional Court starts from the premise that it is also the task of the data controller – in this case Meta – in civil proceedings to prove that the processing of such data is permissible under the GDPR. The transfer of data to third parties on a search function or a contact import function is also data processing in the sense of the GDPR. Meta was unable to demonstrate here that the disclosure of the plaintiff’s cell phone number as part of the search or contact import function was justified under the GDPR. Meta cannot rely on the fulfillment of the contractual purpose as a justification ground under the GDPR, since the processing of the cell phone number is not absolutely necessary for the networking of Facebook users with each other, taking into account the principle of data minimization. The processing of the cell phone number therefore requires the consent of the user. Such consent was not validly granted in this case, because the consent granted to the plaintiff at the time used default settings that could be deselected by the user if desired (“opt-out”) and the information about the search and contact import function was inadequate and non-transparent.

The Higher Regional Court also affirmed a breach of duty leading to damages in principle, since Meta had not taken obvious measures to prevent further unauthorized data access despite concrete knowledge of the data access in the present case.

Nevertheless, the Higher Regional Court did not award the plaintiff any damages. The plaintiff here has only claimed non-material damages, which is possible in principle under the GDPR and can lead to compensation similar to damages for pain and suffering. However, the plaintiff has not succeeded in demonstrating concrete non-material damage. In doing so, the Higher Regional Court assumes that the immaterial damage cannot lie in the mere violation of the GDPR itself, but that personal or psychological impairments going beyond this must have occurred. However, the plaintiff has not presented such individually. The blanket statement, identical to a large number of similar proceedings, that the “plaintiff party” had developed feelings of a loss of control, of being watched and of helplessness, i.e. an overall feeling of fear, and had expended time and effort, is not sufficient to demonstrate that the plaintiff was concretely and individually affected. Nor is the misuse of data at issue here, which led to the unintentional publication of the name and cell phone number, so serious that the occurrence of non-material damage is readily apparent. In addition, the plaintiff had only stated in her personal hearing before the district court that she had suffered a “feeling of fright”.

The Higher Regional Court assessed the amount in dispute for the entire proceedings – in which further claims for declaratory judgment, injunctive relief and information had also been asserted unsuccessfully – at only EUR 3,000. It saw no reason to refer the proceedings to the European Court of Justice for a preliminary ruling or to allow an appeal, as the decisive legal questions had recently been clarified by the European Court of Justice.

Marian Härtel
Author: Marian Härtel

Marian Härtel ist Rechtsanwalt und Fachanwalt für IT-Recht mit einer über 25-jährigen Erfahrung als Unternehmer und Berater in den Bereichen Games, E-Sport, Blockchain, SaaS und Künstliche Intelligenz. Seine Beratungsschwerpunkte umfassen neben dem IT-Recht insbesondere das Urheberrecht, Medienrecht sowie Wettbewerbsrecht. Er betreut schwerpunktmäßig Start-ups, Agenturen und Influencer, die er in strategischen Fragen, komplexen Vertragsangelegenheiten sowie bei Investitionsprojekten begleitet. Dabei zeichnet sich seine Beratung durch einen interdisziplinären Ansatz aus, der juristische Expertise und langjährige unternehmerische Erfahrung miteinander verbindet. Ziel seiner Tätigkeit ist stets, Mandanten praxisorientierte Lösungen anzubieten und rechtlich fundierte Unterstützung bei der Umsetzung innovativer Geschäftsmodelle zu gewährleisten.

Tags: FacebookGDPRPrivacy

Weitere spannende Blogposts

Cookies for advertising purposes only with the active consent of the user

ECJ: Cookies require explicit consent of users
5. June 2020

The BGH has ruled on the question of the requirements for consent to telephone advertising and the storage of cookies...

Read moreDetails

Legal structure of API usage agreements

Legal drafting of API usage agreements: Key issues for tech companies
16. October 2024

APIs (Application Programming Interfaces) are the backbone of the modern digital economy. They enable the seamless integration of services and...

Read moreDetails

FDP wants to change TMG in line with cookie ruling

ECJ: Cookies require explicit consent of users
23. October 2019

The FDP parliamentary group has tabled an entry to amend the Telemedia Act in response to the ECJ's cookie ruling:...

Read moreDetails

IGD waives claims arising from data protection

abmahnung
7. November 2022

Actually, the topic IGD Interessengemeinschaft Datenschutz e.V. has already been dealt with sufficiently. I have reported on this here and...

Read moreDetails

Attention Brexit and GDPR

Attention Brexit and GDPR
7. November 2022

An important announcement is currently coming from the UK in the wake of Brexit. While much that will (or will...

Read moreDetails

Facebook and the NetzDG

Facebook pages, data protection and August 1, 2019
3. April 2023

The Münster Higher Administrative Court recently ruled in an urgent decision that the obligation to provide a counter-appeal procedure provided...

Read moreDetails

E-commerce law: legally compliant design of online stores for the self-employed

E-commerce law: legally compliant design of online stores for the self-employed
10. October 2024

Creating an online store offers self-employed people enormous opportunities, but also harbors numerous legal pitfalls. A legally compliant design is...

Read moreDetails

Cheating in esport: Can I monitor employees?

Cheating in esport: Can I monitor employees?
6. December 2019

For numerous reasons, the topic of cheating in esports is currently very hot and controversial. But can I actually track...

Read moreDetails

The Mysterious World of IT Law in EU ;-)

Privacy policy
24. July 2023

It's Monday morning and I just came across a graphic that shows that as an IT company you can hardly...

Read moreDetails
Startup ohne Entwickler?
Gloss / Opinion

Startup ohne Entwickler?

8. July 2025

Es ist spätabends, der Kaffee neben dem Laptop ist längst kalt, doch ich lächle zufrieden: In wenigen Stunden habe ich...

Read moreDetails
Keine stillschweigende AGB-Änderung – Schweigen gilt nicht als Zustimnung

Keine stillschweigende AGB-Änderung – Schweigen gilt nicht als Zustimnung

7. July 2025
So langsam nimmt der Shop Form an

So langsam nimmt der Shop Form an

3. July 2025
Dark Patterns: UX-Tricks im Visier von Gesetzgeber und Gerichten

Dark Patterns: UX-Tricks im Visier von Gesetzgeber und Gerichten

2. July 2025
Altersverifikation im Internet: Pflichten für Anbieter in Deutschland und Europa

Altersverifikation im Internet: Pflichten für Anbieter in Deutschland und Europa

30. June 2025

Podcastfolge

Leben als IT-Anwalt, Work-Life Balance, Familie und meine Karriere

Leben als IT-Anwalt, Work-Life Balance, Familie und meine Karriere

25. September 2024

In dieser fesselnden Episode meines IT-Medialaw Podcasts teile ich, Marian Härtel, meine persönliche Reise als leidenschaftlicher IT-Rechtsanwalt. Ich erzähle von...

Read moreDetails
Startups und Innovation in Deutschland – Herausforderungen und Chancen

Startups und Innovation in Deutschland – Herausforderungen und Chancen

25. September 2024
Rechtliche Grundlagen und Praxis von Open Source in der Softwareentwicklung

Rechtliche Grundlagen und Praxis von Open Source in der Softwareentwicklung

19. April 2025
Rechtssichere Influencer-Agentur-Verträge: Strategien zur Vermeidung unerwarteter Kündigungen

Rechtssichere Influencer-Agentur-Verträge: Strategien zur Vermeidung unerwarteter Kündigungen

19. April 2025
Rechtskette beim Spieleentwickler

Rechtskette beim Spieleentwickler

19. April 2025

Video

Mein transparente Abrechnung

Mein transparente Abrechnung

10. February 2025

In diesem Video rede ich ein wenig über transparente Abrechnung und wie ich kommuniziere, was es kostet, wenn man mit...

Read moreDetails
Faszination zwischen und Recht und Technologie

Faszination zwischen und Recht und Technologie

10. February 2025
Meine zwei größten Herausforderungen sind?

Meine zwei größten Herausforderungen sind?

10. February 2025
Was mich wirklich freut

Was mich wirklich freut

10. February 2025
Was ich an meinem Job liebe!

Was ich an meinem Job liebe!

10. February 2025
  • Privacy policy
  • Imprint
  • Contact
  • About lawyer Marian Härtel
Marian Härtel, Rathenaustr. 58a, 14612 Falkensee, info@itmedialaw.com

Marian Härtel - Rechtsanwalt für IT-Recht, Medienrecht und Startups, mit einem Fokus auf innovative Geschäftsmodelle, Games, KI und Finanzierungsberatung.

Welcome Back!

Login to your account below

Forgotten Password? Sign Up

Create New Account!

Fill the forms below to register

All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In
  • Informationen
    • Ideal partner
    • About lawyer Marian Härtel
    • Quick and flexible access
    • Principles as a lawyer
    • Why a lawyer and business consultant?
    • Focus areas of attorney Marian Härtel
      • Focus on start-ups
      • Investment advice
      • Corporate law
      • Cryptocurrencies, Blockchain and Games
      • AI and SaaS
      • Streamers and influencers
      • Games and esports law
      • IT/IP Law
      • Law firm for GMBH,UG, GbR
      • Law firm for IT/IP and media law
    • The everyday life of an IT lawyer
    • How can I help clients?
    • Testimonials
    • Team: Saskia Härtel – WHO AM I?
    • Agile and lean law firm
    • Price overview
    • Various information
      • Terms
      • Privacy policy
      • Imprint
  • Services
    • Support and advice of agencies
    • Contract review and preparation
    • Games law consulting
    • Consulting for influencers and streamers
    • Advice in e-commerce
    • DLT and Blockchain consulting
    • Legal advice in corporate law: from incorporation to structuring
    • Legal compliance and expert opinions
    • Outsourcing – for companies or law firms
    • Booking as speaker
  • News
    • Gloss / Opinion
    • Law on the Internet
    • Online retail
    • Law and computer games
    • Law and Esport
    • Blockchain and web law
    • Data protection Law
    • Copyright
    • Labour law
    • Competition law
    • Corporate
    • EU law
    • Law on the protection of minors
    • Tax
    • Other
    • Internally
  • Podcast
    • ITMediaLaw Podcast
  • Knowledge base
    • Laws
    • Legal terms
    • Contract types
    • Clause types
    • Forms of financing
    • Legal means
    • Authorities
    • Company forms
    • Tax
    • Concepts
  • Videos
    • Information videos – about Marian Härtel
    • Videos – about me (Couch)
    • Blogpost – individual videos
    • Videos on services
    • Shorts
    • Podcast format
    • Third-party videos
    • Other videos
  • Contact
  • en English
  • de Deutsch
Kostenlose Kurzberatung