Facebook and Twitter have not provided yet the required information about the storage location of the Russian personal data they process, the authorities stated Friday.
Roskomnadzor, the Internet and telecom regulator, said Friday the two companies could be forced to pay a fine ranging from 1 million rubles (approximately $16,000) and 6 million rubles ($94,000). A complaint will be filed in Russian court within days.
Under a new law imposing stiffer fines that President Vladimir Putin signed last month, fines for repeat offenses go up to 18 million rubles (almost $290,000).
The authorities may even block access to their sites from Russia – as was the case with LinkedIn in 2016, following two court decisions.
According to a legislation applicable since September 2015, companies operating in Russia are required to store Russian users’ or clients’ personal data on servers physically located in the country. Numerous foreign and domestic players were concerned, including global players who tended to store their users’ data in borderless clouds (see white paper by EWDN and EY).
Over the past years Roskomnadzor requested Facebook and Twitter several times to report on their compliance with the law. The digital giants sent both positive and negative signals on the matter, but have failed to provide Roskomnadzor with specific answers. In Spring last year Roskomnadzor issued a Jan. 31, 2020 deadline.
A range of other international businesses — including Alibaba, AliExpress, Apple, and Google — have been more law-abiding, managing to transfer user data from foreign data centers to Russia.
