CNIL fines Google and SHEIN in ongoing cookie compliance crackdown

France’s data protection authority, CNIL, has fined Google 350 million euros and SHEIN 150 million euros as part of a broader enforcement effort targeting non-compliant use of advertising cookies under Article 82 of the French Data Protection Act.

The action stems from CNIL’s 2019 guidelines, aimed at ensuring that internet users are adequately informed and give valid consent for the placement of cookies.

The CNIL’s restricted committee, responsible for imposing penalties, raised ongoing concerns such as unauthorised cookie placement and the growing use of ‘cookie walls’ where users must accept cookies to access services.

Although not illegal by default, such practices require consent, with all choices presented clearly and without bias.

In Google’s case, CNIL also cited a breach of Article L.34-5 of the French Postal and Electronic Communications Code for displaying promotional emails in Gmail’s ‘Promotions’ and ‘Social’ tabs without prior user consent. High-traffic platforms remain a key focus of the authority’s compliance strategy.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

Google avoids forced breakup in search monopoly trial

A United States federal judge has ruled against a forced breakup of Google’s search business, instead opting for a series of behavioural changes to curb anticompetitive behaviour.

The ruling, from US District Court Judge Amit P. Mehta, bars Google from entering or maintaining exclusive deals that tie the distribution of its search products, such as Search, Chrome, and Gemini, to other apps or revenue agreements.

The tech giant will also have to share specific search data with rivals and offer search and search ad syndication services to competitors at standard rates.

The ruling comes a year after Judge Mehta found that Google had illegally maintained its monopoly in online search. The Department of Justice brought the case and pushed for stronger measures, including forcing Google to sell off its Chrome browser and Android operating system.

It also sought to end Google’s lucrative agreements with companies like Apple and Samsung, in which it pays billions to be the default search engine on their devices. The judge acknowledged during the trial that these default placements were ‘extremely valuable real estate’ that effectively locked out rivals.

A final judgement has not yet been issued, as Judge Mehta has given Google and the Department of Justice until 10 September to submit a revised plan. A technical committee will be established to help enforce the judgement, which will go into effect 60 days after entry and last for six years.

Experts say the ruling may influence a separate antitrust trial against Google’s advertising technology business, and that the search case itself is likely to face a lengthy appeals process, stretching into 2028.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

Gemini upgrade for Google Home coming soon

An upcoming upgrade for Google Home devices is set to bring a new AI assistant, Gemini, to the smart home ecosystem. A recent post by the Made by Google account on X revealed that more details will be announced on 1 October.

The move follows months of user complaints about Google Home’s performance, including issues with connectivity and the assistant’s failure to recognise basic commands.

With Gemini’s superior ability to understand natural language, the upgrade is expected to improve how users interact with their smart devices significantly. Home devices should better execute complex commands with multiple actions, such as dimming some lights while leaving others on.

However, the update will also introduce ‘Gemini Live’ to compatible devices, a feature allowing for natural, back-and-forth conversations with the AI chatbot.

The Gemini for Google Home upgrade will initially be rolled out on an early access basis. It will be available in free and paid tiers, suggesting that some more advanced features may be locked behind a subscription.

The update is anticipated to make Google Home and Nest devices more reliable and to handle complex requests easily.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot

Google dismisses false breach rumours as Gmail security concerns grow

Reports that Gmail suffered a massive breach have been dismissed by Google, which said rumours of warnings to 2.5 billion users were false.

In a Monday blog post, Google rejected claims that it had issued global notifications about a serious Gmail security issue. It stressed that its protections remain effective against phishing and malware.

Confusion stems from a June incident involving a Salesforce server, during which attackers briefly accessed public business information, including names and contact details. Google said all affected parties were notified by early August.

The company acknowledged that phishing attempts are increasing, but clarified that Gmail’s defences block more than 99.9% of such attempts. A July blog post on phishing risks may have been misinterpreted as evidence of a breach.

Google urged users to remain vigilant, recommending password alternatives such as passkeys and regular account reviews. While the false alarm spurred unnecessary panic, security experts noted that updating credentials remains good practice.

Would you like to learn more about AI, tech, and digital diplomacy? If so, ask our Diplo chatbot!

Disruption unit planned by Google to boost proactive cyber defence

Google is reportedly preparing to adopt a more active role in countering cyber threats directed at itself and, potentially, other United States organisations and elements of national infrastructure.

The Vice President of Google Threat Intelligence Group, Sandra Joyce, stated that the company intends to establish a ‘disruption unit’ in the coming months.

Joyce explained that the initiative will involve ‘intelligence-led proactive identification of opportunities where we can actually take down some type of campaign or operation,’ stressing the need to shift from a reactive to a proactive stance.

This announcement was made during an event organised by the Centre for Cybersecurity Policy and Law, which in May published the report which raises questions as to whether the US government should allow private-sector entities to engage in offensive cyber operations, whether deterrence is better achieved through non-cyber responses, or whether the focus ought to be on strengthening defensive measures.

The US government’s policy direction emphasises offensive capabilities. In July, Congress passed the ‘One Big Beautiful Bill Act, allocating $1 billion to offensive cyber operations. However, this came amidst ongoing debates regarding the balance between offensive and defensive measures, including those overseen by the Cybersecurity and Infrastructure Security Agency (CISA).

Although the legislation does not authorise private companies such as Google to participate directly in offensive operations, it highlights the administration’s prioritisation of such activities.

On 15 August, lawmakers introduced the Scam Farms Marque and Reprisal Authorisation Act of 2025. If enacted, the bill would permit the President to issue letters of marque and reprisal in response to acts of cyber aggression involving criminal enterprises. The full text of the bill is available on Congress.gov.

The measure draws upon a concept historically associated with naval conflict, whereby private actors were empowered to act on behalf of the state against its adversaries.

These legislative initiatives reflect broader efforts to recalibrate the United States’ approach to deterring cyberattacks. Ransomware campaigns, intellectual property theft, and financially motivated crimes continue to affect US organisations, whilst critical infrastructure remains a target for foreign actors.

In this context, government institutions and private-sector companies such as Google are signalling their readiness to pursue more proactive strategies in cyber defence. The extent and implications of these developments remain uncertain, but they represent a marked departure from previous approaches.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

Noyb wins GDPR case against Youtube

Austrian digital rights ngo, noyb, has won a case against YouTube after a five-and-a-half-year battle, with the Austrian data protection authority ordering the platform to fully comply with a user’s data access request under Article 15 of the GDPR.

In 2019, privacy group noyb filed eight complaints against major streaming platforms, including YouTube, Spotify, Netflix, Amazon, and Apple Music, for not fully complying with the EU’s data protection law, the GDPR.

Under Article 15 of the GDPR, companies must provide users access to their personal data and explain how it is used, who it’s shared with, and how long it’s stored. But according to noyb, none of the companies responded appropriately.

The case against YouTube, owned by Google, stood out. A user requested their data in 2019 but received only part of it, with important details missing, such as why the data was being processed and who else had access to it.

It took the Austrian data protection authority (DSB) five and a half years to issue a ruling, finally ordering Google to hand over the complete information.

Martin Baumann, a lawyer at noyb, said these delays make it nearly impossible for users to exercise other rights, like correcting or deleting their data. The DSB confirmed that companies must fully answer access requests in a clear, easy-to-understand format.

Simply directing users to tools or privacy policies isn’t enough. Google has four weeks to comply, or it can appeal and continue delaying.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot

US appeals court reverses key findings in Sonos-Google patent case

The US Court of Appeals for the Federal Circuit (CAFC) issued a reversed-in-part and affirmed-in-part a district court decision in the ongoing legal battle between Sonos and Google over smart speaker technologies. The court reversed the district court’s finding that Sonos’s ‘Zone Scene’ patents were unenforceable due to prosecution laches, a legal doctrine that can bar the enforcement of patents if the owner unreasonably delays in pursuing claims.

The district court had held that Sonos waited too long (13 years) to file specific claims following its 2006 provisional application, allegedly prejudicing Google, which had begun developing similar products by 2015.

However, the CAFC found that Google had failed to establish actual prejudice. It noted a lack of evidence that Google had meaningfully invested in the accused technology based on the assumption that Sonos had not already invented it. As a result, the court held that the lower court had abused its discretion in declaring the patents unenforceable.

The CAFC also reversed the district court’s invalidation of the Zone Scene patents for lack of written description, citing sufficient detail in Sonos’s 2019 patents. Google’s argument that the patents described only alternative embodiments was rejected, particularly as Google had presented no expert testimony to rebut Sonos’s claims.

Case background

Essentially, in 2020, Sonos filed a lawsuit against Google in the US, accusing it of infringing on key patents related to wireless multi-room speaker technology. Sonos claimed that after collaborating with Google years earlier, Google used its proprietary technology without permission in products like Google Home and Chromecast.

In 2022, the US International Trade Commission sided with Sonos, leading to a limited import ban on some Google products. In response, Google had to remove or change certain features, such as group volume control.

However, Google later challenged the validity of Sonos’s patents, and some were ruled invalid by a federal court. The legal battle has continued in various jurisdictions, reflecting broader conflicts over intellectual property rights and innovation in the tech world. Both companies have appealed different aspects of the rulings.

Would you like to learn more about AI, tech, and digital diplomacy? If so, ask our Diplo chatbot!

Google Sheets gains smarter table conversion with Gemini

Last year, Google introduced ‘Convert to table’ suggestions in Sheets, allowing users to turn a selected data range into a formatted table with one click.

Now, Google has enhanced that feature with Gemini integration. When users accept a table suggestion, Gemini applies proper formatting and creates sensible names, such as ‘Project_Status’ or ‘Office_Expenses’, making formula references more precise and meaningful.

For example, users can write =SUM(Office_Expenses[Amount]) instead of cryptic cell ranges like =SUM(E2:E15).

These newly named tables offer dynamic formula ranges that automatically expand or shrink as rows are added or removed, helping spreadsheets stay accurate without manual edits. The feature can be turned off under Tools > Suggestion controls if users prefer their original workflow.

Rollout is underway for Google Workspace Business Standard/Plus and Enterprise plans and Google AI Pro, Ultra, and specific education add-ons.

Rapid Release domains are receiving it now. Scheduled Release domains will see it from 12 September. Admins must enable innovative features and personalisation for users to access them.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

Pixel Care+ launches for Pixel, Fitbit, and Pixel Watch devices

Google has launched Pixel Care+, a new device protection programme that replaces Preferred Care and Fi Device Protection in the US. Existing subscribers will be transitioned to the new plan over the coming months.

The programme offers unlimited accidental damage claims, extended warranty coverage, and $0 repairs for screen, battery, and malfunction issues. It also guarantees genuine Google parts, priority support, and optional theft and loss protection.

Subscribers benefit from free upgraded shipping on replacements, including next-day delivery. Pricing varies by device, with Pixel Care+ for the Pixel 10 costing $10 per month or $199 for two years.

Pixel Care+ is available for Pixel 8 and newer devices, as well as Pixel Watch 2, Pixel Tablet, and Fitbit models, including Ace LTE, Versa 4, Sense 2, Charge 6, and Inspire 3. Users must enrol within 60 days of purchase.

Would you like to learn more about AI, tech, and digital diplomacy? If so, ask our Diplo chatbot!