Italy's competition authority has taken a firm stance by imposing a fine of 98,6 million euros to Apple for the way it applies a App Store privacy policyThe case revolves around the well-known function of Transparency in Application Tracking (ATT), presented by the company as a tool to strengthen the protection of user data.
For the Italian regulator, however, this policy is not only about privacy, but also about... competition in the digital advertising marketAccording to their findings, Apple would have taken advantage of its absolute control over the app distribution on iOS to impose rules that They harm third-party developers and consolidate their dominant position.
A multimillion-dollar fine for abuse of dominant position
The Autorità Garante della Concorrenza e del Mercato (AGCM), the Italian competition watchdog, has concluded after a complex investigation coordinated with the European Commission Apple has abused its position in the mobile app market. The investigation, opened in May 2023, examines changes made since April 2021, when AT&T became available on iOS devices.
The regulator maintains that Apple enjoys a position of absolute dominance This situation, according to the AGCM, allows the company to compete with developers who want to reach iPhone and iPad users, since the App Store is the only official distribution channel. impose unilateral conditions that directly affect the viability of business models based on personalized advertising.
The fine of 98,6 million euros, which extends to two Apple divisions in addition to the parent companyThis is justified precisely by that use of privacy policy as a tool that, in practice, restricts competition in the market of advertising services and online advertising intermediation.
The Italian decision adds to a European context in which large technology companies, and Apple in particular, find themselves under a increasing regulatory pressure because of the control they exert over their mobile ecosystems and the conditions they set for third parties.
How ATT works and why it generates double consent
The center of the controversy is the function Transparency Tracking App, known by its acronym ATT. Since its inception, any app that wants to track user activity on other apps or websites must display a pop-up window designed by Apple, which requires explicit permission for such tracking.
If the user denies consentThe app loses access to key data for delivering personalized ads, which directly impacts those who rely on targeted advertising to fund free or low-cost services. For many developers, this information is a essential asset that sustains its economic model.
The problem, according to the AGCM, is not so much the existence of the warning, but rather that ATT's request is not sufficient to comply with the General Data Protection Regulation (GDPR)Developers must request additional permission through their own mechanisms to ensure that their data processing complies with European regulations.
This causes what the Italian regulator calls a duplication of consentThe user is confronted with two different requests for the same purpose: first through Apple's mandatory screen and then through the app's internal system. For the average user, this translates into a barrage of repeated windows which generate fatigue and a lack of clarity about exactly what is being accepted.
From the perspective of developers and advertising platforms, this duplication adds a additional friction which reduces the likelihood that users will accept tracking, with the consequent impact on personalized advertising revenue and the ability to monetize their applications.
The AGCM's analysis: privacy yes, but without distorting the market
In its resolution, the AGCM underlines that the terms of ATT are They impose unilaterally by Apple, without any real negotiating power on the part of the developers who depend on the App Store. According to the organization, these conditions They are not proportional to the stated objective of protecting user privacy.
The regulator believes that, given the central role played by the user data for online advertisingThe requirement of a double request for consent ultimately leads to restrict the collection, linking, and use of such information by third parties. According to the AGCM, this translates into direct harm to:
- External developers whose business model is based on the sale of advertising space.
- Advertisers that need segmented data to reach specific audiences.
- Advertising intermediation platforms that connect advertising inventory with demand for personalized ads.
In the opinion of the Italian agency, Apple could have achieved an equivalent level of privacy protection by allowing that consent to be obtained in one step controlled by the developers themselves, provided that GDPR standards were respected. Thus, the ATT function, as currently designed, is considered disproportionately and generates a competitive imbalance.
The AGCM also focuses on the fact that, while subjecting third-party developers to a very strict policy, Apple would maintain greater flexibility for their own services advertising and analytics within the iOS ecosystem, which fuels suspicion that the privacy tool is also being used as lever to strengthen its internal business.
Apple rejects the accusations and announces a legal challenge
Apple has reacted strongly to the sanction, stating its Total disagreement y He denies spying on iOS.insisting that privacy is a fundamental human right And that the ATT feature was designed precisely to offer users clear and simple control over which companies can track them across different apps and websites.
According to the company, the rules related to App Tracking Transparency They apply equally to all developersincluding Apple itself. In its statements, the multinational maintains that the system has been applauded by privacy advocates and by various data protection authorities around the world, who see it as a step forward in the transparency of the use of personal information.
From Apple's perspective, the decision adopted by the AGCM overlooks additional guarantees which AT&T provides in the face of intrusive advertising practices, and prioritizes the interests of advertising technology companies and data tracking companies seeking broad access to user information.
The company has confirmed that will appeal the ruling before the competent courts in Italy, with the intention of defending both the validity of its privacy policy and its compatibility with European law. While the process is underway, Apple anticipates keep the ATT function activeTherefore, the current experience with consent windows will not change for users in the short term.
Europe focuses on the App Store and digital advertising
The Italian case did not arise in a vacuum. In recent years, several European authorities have closely scrutinized how Apple manages its mobile ecosystem and, in particular, control over the App Store and regarding the conditions of access to user data. Competition decisions are beginning to reveal a common pattern: the fear that the combination of privacy and ecosystem closure will ultimately limiting competition.
In France, the antitrust authority had already imposed a fine of 150 million euros Apple is also being investigated for issues related to AT&T and its impact on targeted advertising. Other European regulators have opened parallel investigations, examining whether the new rules implemented by the company comply with both privacy and competition regulations.
Behind these files lies a key question for the European digital market: to what extent can the privacy protection as an argument for introducing changes that complicate the lives of competitors, while maintaining a certain margin of maneuverability for their own services. For many regulators, the line between legitimate user protection and the business strategy It is getting thinner and thinner.
The scrutiny of Apple is further compounded by the framework of Digital Markets Regulation (DMA) and to the rest of the European regulations that attempt to limit the power of large platforms considered "gatekeepers of access." The way this conflict is resolved in Italy could be a important reference for other procedures within the EU.
Potential impact for European developers and users
For the millions of iPhone users in Spain and the rest of Europe, the immediate consequences of the sanction are not particularly visible. For the time being, they will continue to encounter the same issues. consent windows when an application wants to track your activity beyond the app itself.
The effect is noticeable on the other side of the screen, between the app developers and digital advertising companiesand in the very dynamics of the app platformsThe double consent requirement forces them to redesign user flows, introduce more steps, and accept higher rejection rates, which can put projects that depend entirely on personalized advertising in a difficult position.
If the courts or European regulatory pressure ultimately force Apple to modify ATT policySignificant changes could occur: from the disappearance of the double request to the possibility for developers to manage consent on a single screen in compliance with the GDPR, without necessarily having to go through Apple's interface.
In practice, that could mean fewer pop-ups for users and a greater ability for developers to optimize their relationship with advertising. In return, the debate would shift to how to ensure that, with fewer barriers, a sufficient level of protection against intensive tracking and the creation of overly detailed profiles.
Ultimately, the debate in Italy embodies a broader dilemma affecting the entire European digital market: how to balance users' desire to have Greater control over your data with the need for real competition between platforms and developers, especially when access to that data has become the key to the advertising business on the Internet.
What's at stake in the conflict between Apple and the Italian competition authority goes beyond a financial penalty: it's about defining how far can a large platform go? by designing its privacy rules without distorting the market that revolves around it, and whether the current App Store model fits with the European vision of effective competition, transparency and data protection in the mobile ecosystem.
