Dec 23 (Reuters) – Facebook owner Meta Platforms Inc (META.O) has agreed to pay $725 million to resolve a class-action lawsuit accusing the social media giant of allowing third parties, including Cambridge Analytica, to access users’ personal information.
The proposed settlement, which was disclosed in a court filing late on Thursday, would resolve a long-running lawsuit prompted by revelations in 2018 that Facebook had allowed the British political consulting firm Cambridge Analytica to access data of as many as 87 million users.
Lawyers for the plaintiffs called the proposed settlement the largest to ever be achieved in a U.S. data privacy class action and the most that Meta has ever paid to resolve a class action lawsuit.
“This historic settlement will provide meaningful relief to the class in this complex and novel privacy case,” the lead lawyers for the plaintiffs, Derek Loeser and Lesley Weaver, said in a joint statement.
Meta did not admit wrongdoing as part of the settlement, which is subject to the approval of a federal judge in San Francisco. The company said in a statement settling was “in the best interest of our community and shareholders.”
“Over the last three years we revamped our approach to privacy and implemented a comprehensive privacy program,” Meta said.
Cambridge Analytica, now defunct, worked for Donald Trump’s successful presidential campaign in 2016, and gained access to the personal information from millions of Facebook accounts for the purposes of voter profiling and targeting.
Cambridge Analytica obtained that information without users’ consent from a researcher who had been allowed by Facebook to deploy an app on its social media network that harvested data from millions of its users.
The ensuing Cambridge Analytica scandal fueled government investigations into its privacy practices, lawsuits and a high-profile U.S. congressional hearing where Meta Chief Executive Mark Zuckerberg was grilled by lawmakers.
In 2019, Facebook agreed to pay $5 billion to resolve a Federal Trade Commission probe into its privacy practices and $100 million to settle U.S. Securities and Exchange Commission claims that it misled investors about the misuse of users’ data.
Investigations by state attorneys general are ongoing, and the company is fighting a lawsuit by the attorney general for Washington, D.C.
Thursday’s settlement resolved claims by Facebook users that the company violated various federal and state laws by letting app developers and business partners harvest their personal data without their consent on a widespread basis.
The users’ lawyers alleged that Facebook misled them into thinking they could keep control over personal data, when in fact it let thousands of preferred outsiders gain access.
Facebook argued its users have no legitimate privacy interest in information they shared with friends on social media. But U.S. District Judge Vince Chhabria called that view “so wrong” and in 2019 largely allowed the case to move forward.
Reporting by Nate Raymond in Boston; Editing by Muralikumar Anantharaman
Our Standards: The Thomson Reuters Trust Principles.
Nate Raymond
Thomson Reuters
Nate Raymond reports on the federal judiciary and litigation. He can be reached at nate.raymond@thomsonreuters.com.
Dec 23 (Reuters) – Facebook owner Meta Platforms Inc (META.O) has agreed to pay $725 million to resolve a class-action lawsuit accusing the social media giant of allowing third parties, including Cambridge Analytica, to access users’ personal information.
The proposed settlement, which was disclosed in a court filing late on Thursday, would resolve a long-running lawsuit prompted by revelations in 2018 that Facebook had allowed the British political consulting firm Cambridge Analytica to access data of as many as 87 million users.
Lawyers for the plaintiffs called the proposed settlement the largest to ever be achieved in a U.S. data privacy class action and the most that Meta has ever paid to resolve a class action lawsuit.
“This historic settlement will provide meaningful relief to the class in this complex and novel privacy case,” the lead lawyers for the plaintiffs, Derek Loeser and Lesley Weaver, said in a joint statement.
Meta did not admit wrongdoing as part of the settlement, which is subject to the approval of a federal judge in San Francisco. The company said in a statement settling was “in the best interest of our community and shareholders.”
“Over the last three years we revamped our approach to privacy and implemented a comprehensive privacy program,” Meta said.
Cambridge Analytica, now defunct, worked for Donald Trump’s successful presidential campaign in 2016, and gained access to the personal information from millions of Facebook accounts for the purposes of voter profiling and targeting.
Cambridge Analytica obtained that information without users’ consent from a researcher who had been allowed by Facebook to deploy an app on its social media network that harvested data from millions of its users.
The ensuing Cambridge Analytica scandal fueled government investigations into its privacy practices, lawsuits and a high-profile U.S. congressional hearing where Meta Chief Executive Mark Zuckerberg was grilled by lawmakers.
In 2019, Facebook agreed to pay $5 billion to resolve a Federal Trade Commission probe into its privacy practices and $100 million to settle U.S. Securities and Exchange Commission claims that it misled investors about the misuse of users’ data.
Investigations by state attorneys general are ongoing, and the company is fighting a lawsuit by the attorney general for Washington, D.C.
Thursday’s settlement resolved claims by Facebook users that the company violated various federal and state laws by letting app developers and business partners harvest their personal data without their consent on a widespread basis.
The users’ lawyers alleged that Facebook misled them into thinking they could keep control over personal data, when in fact it let thousands of preferred outsiders gain access.
Facebook argued its users have no legitimate privacy interest in information they shared with friends on social media. But U.S. District Judge Vince Chhabria called that view “so wrong” and in 2019 largely allowed the case to move forward.
Reporting by Nate Raymond in Boston; Editing by Muralikumar Anantharaman
Our Standards: The Thomson Reuters Trust Principles.
Nate Raymond
Thomson Reuters
Nate Raymond reports on the federal judiciary and litigation. He can be reached at nate.raymond@thomsonreuters.com.
LUXEMBOURG, Dec 8 (Reuters) – Alphabet unit Google (GOOGL.O) must remove data from online search results if users can prove it is inaccurate, Europe’s top court said on Thursday.
Free speech advocates and supporters of privacy rights have clashed in recent years over people’s “right to be forgotten” online, meaning that they should be able to remove their digital traces from the internet.
The case before the Court of Justice of the European Union (CJEU) concerned two executives from a group of investment companies who had asked Google to remove search results linking their names to certain articles criticising the group’s investment model.
They also wanted Google to remove thumbnail photos of them from search results. The company rejected the requests, saying it did not know whether the information in the articles was accurate or not.
A German court subsequently sought advice from the CJEU on the balance between the right to be forgotten and the right to freedom of expression and information.
“The operator of a search engine must de-reference information found in the referenced content where the person requesting de-referencing proves that such information is manifestly inaccurate,” the Court of Justice of the European Union said.
The Google logo is pictured at the entrance to the Google offices in London, Britain January 18, 2019. REUTERS/Hannah McKay/File Photo
To avoid an excessive burden on users, judges said such proof does not have to come from a judicial decision against website publishers and that users only have to provide evidence that can reasonably be required of them to find.
Google said the links and thumbnails in question were no longer available through web search and image search and that the content had been offline for a long time.
“Since 2014, we’ve worked hard to implement the right to be forgotten in Europe, and to strike a sensible balance between people’s rights of access to information and privacy,” a spokesperson said.
The same court in 2014 enshrined the right to be forgotten, saying that people could ask search engines like Google to remove inadequate or irrelevant information from web results appearing under searches for their names.
The judgment preceded landmark EU privacy rules that went into effect in 2018 and state that the right to be forgotten is excluded where the processing of personal data is necessary for the exercise of the right of information.
The case is C-460/20 Google (Déréférencement d’un contenu prétendument inexact).
Reporting by Foo Yun Chee, additional reporting by Benoit Van Overstraeten in Paris; editing by Barbara Lewis, Robert Birsel
Our Standards: The Thomson Reuters Trust Principles.
A logo of Meta Platforms Inc. is seen at its booth, at the Viva Technology conference dedicated to innovation and startups, at Porte de Versailles exhibition center in Paris, France June 17, 2022. REUTERS/Benoit Tessier
Register now for FREE unlimited access to Reuters.com
Register
Aug 26 (Reuters) – Meta Platforms Inc’s Facebook has in-principle agreed to settle a lawsuit in the San Francisco federal court seeking damages for letting third parties including Cambridge Analytica access the private data of users, a court filing showed.
The financial terms were not disclosed in the filing on Friday that asked the judge to put the class action on hold for 60 days until the lawyers for both plaintiffs and Facebook finalize a written settlement.
The four-year-old lawsuit alleged that Facebook violated consumer privacy laws by sharing personal data of users with third parties such as the now-defunct British political consultancy Cambridge Analytica.
Register now for FREE unlimited access to Reuters.com
Register
Facebook has said its privacy practices are consistent with its disclosures and “do not support any legal claims”.
Facebook and its lawyers from Gibson, Dunn & Crutcher did not immediately respond to a request for more details regarding the settlement.
Of the two law firms representing the plaintiffs, Keller Rohrback did not comment while Bleichmar Fonti & Auld declined to comment.
Register now for FREE unlimited access to Reuters.com
Register
Reporting by Eva Mathews and Praveen Paramasivam in Bengaluru; Editing by Aditya Soni
Our Standards: The Thomson Reuters Trust Principles.
ATHENS, Aug 5 (Reuters) – The head of Greece’s intelligence service stepped down on Friday amid increased scrutiny of the agency’s surveillance practices including an accusation by an opposition party leader that he was wiretapped in 2021.
Panagiotis Kontoleon, chief of the EYP intelligence service, submitted his resignation “following mistaken actions found during lawful wiretapping procedures,” a statement from Prime Minister Kyriakos Mitsotakis’ office said.
Kontoleon was not immediately reachable for comment.
Register now for FREE unlimited access to Reuters.com
Register
Earlier this week, two lawmakers who spoke to Reuters on condition of anonymity said that Kontoleon had admitted during a parliamentary committee hearing on July 29 that his service had spied on Thanasis Koukakis, a financial journalist who works for CNN Greece. read more
That closed-door hearing was called after the leader of the socialist opposition PASOK party Nikos Androulakis lodged a complaint with top court prosecutors over an attempt to bug his mobile phone with surveillance software in September 2021. read more
Androulakis, who was elected PASOK leader in December 2021, said on Friday evening that he had also learned EYP listened to his conversations in late 2021. He did not disclose the source of the information.
Androulakis called on the Greek parliament to set up an investigative committee to look into the case and accused the government of downplaying the issue.
“We found out today that EYP, which reports directly to the prime minister, proceeded with wiretapping me during the internal electoral process over PASOK’s leadership,” he said.
The government later said that it had been made aware of Androulakis’ surveillance, which it said was lawful as it had been approved by a prosecutor, and had sought to inform him “but Androulakis chose not to respond,” government spokesman Giannis Oikonomou said in a statement.
Oikonomou added that the ruling Conservative Party, which controls 157 lawmakers in 300-seat house, would back a request to set up an investigative committee to examine the issue. To be approved, such a motion needs to be signed by 120 lawmakers.
Register now for FREE unlimited access to Reuters.com
Register
Reporting by George Georgiopoulos and Karolina Tagaris, Additional reporting by Renee Maltezou and Angeliki Koutantou; Editing by Ros Russell and Cynthia Osterman
Our Standards: The Thomson Reuters Trust Principles.
PALO ALTO, Calif., June 24 (Reuters) – The technology industry is bracing for the uncomfortable possibility of having to hand over pregnancy-related data to law enforcement, in the wake of the U.S. Supreme Court’s decision on Friday to overturn the Roe v. Wade precedent that for decades guaranteed a woman’s constitutional right to an abortion. read more
As state laws limiting abortion kick in after the ruling, technology trade representatives told Reuters they fear police will obtain warrants for customers’ search history, geolocation and other information indicating plans to terminate a pregnancy. Prosecutors could access the same via a subpoena, too.
The concern reflects how the data collection practices of companies like Alphabet Inc’s (GOOGL.O) Google, Facebook parent Meta Platforms Inc (META.O) and Amazon.com Inc (AMZN.O) have the potential to incriminate abortion-seekers for state laws that many in Silicon Valley oppose.
Register now for FREE unlimited access to Reuters.com
Register
“It is very likely that there’s going to be requests made to those tech companies for information related to search histories, to websites visited,” said Cynthia Conti-Cook, a technology fellow at the Ford Foundation.
Google declined to comment. Representatives for Amazon and Meta did not immediately respond to requests for comment.
Folders containing medical records of abortions that took place inside Tulsa Women’s Clinic, prior to Oklahoma’s abortion ban, are pictured in Tulsa, Oklahoma, U.S. June 20, 2022. REUTERS/Liliana Salgado/File Photo
Read More
Technology has long gathered – and at times revealed – sensitive pregnancy-related information about consumers. In 2015, abortion opponents targeted ads saying “Pregnancy Help” and “You Have Choices” to individuals entering reproductive health clinics, using so-called geofencing technology to identify smartphones in the area.
More recently, Mississippi prosecutors charged a mother with second-degree murder after her smartphone showed she had searched for abortion medication in her third trimester, local media reported. Conti-Cook said, “I can’t even imagine the depth of information that my phone has on my life.”
While suspects unwittingly can hand over their phones and volunteer information used to prosecute them, investigators may well turn to tech companies in the absence of strong leads or evidence. In United States v. Chatrie, for example, police obtained a warrant for Google location data that led them to Okello Chatrie in an investigation of a 2019 bank robbery.
Amazon, for instance, complied at least partially with 75% of search warrants, subpoenas and other court orders demanding data on U.S. customers, the company disclosed for the three years ending in June 2020. It complied fully with 38%. Amazon has said it must comply with “valid and binding orders,” but its goal is to provide “the minimum” that the law requires.
Eva Galperin, cybersecurity director at the Electronic Frontier Foundation, said on Twitter on Friday, “The difference between now and the last time that abortion was illegal in the United States is that we live in an era of unprecedented digital surveillance.”
Register now for FREE unlimited access to Reuters.com
Register
Reporting by Jeffrey Dastin and Katie Paul in Palo Alto, Calif., Paresh Dave in Oakland, Calif., and Stephen Nellis
Editing by Anna Driver and Matthew Lewis
Our Standards: The Thomson Reuters Trust Principles.
SYDNEY, May 25 (Reuters) – China will seek a region-wide deal with almost a dozen Pacific island countries covering policing, security and data communication cooperation when Foreign Minister Wang Yi hosts a meeting in Fiji next week, documents seen by Reuters show.
A draft communique and five-year action plan sent by China to 10 Pacific islands ahead of a meeting of foreign ministers on May 30 has prompted opposition from at least one of the invited nations, which says it showed China’s intent to control the region and “threatens regional stability”.
In a letter to 21 Pacific leaders seen by Reuters, the president of the Federated States of Micronesia (FSM), David Panuelo, said his country would argue the “pre-determined joint communique” should be rejected, because he feared it could spark a new “Cold War” between China and the West.
Register now for FREE unlimited access to Reuters.com
Register
In Washington, U.S. State Department spokesman Ned Price said the United States was aware of Wang Yi’s plans and was “concerned that these reported agreements may be negotiated in a rushed, non-transparent process.”
He said recent security agreements reached by China had been conducted with little regional consultation, provoking concern in the United States and across the region.
“We don’t believe that importing security forces from the PRC and their methods will help any Pacific Island country,” he said. “Doing so can only seek to fuel regional and international tension and increase concerns over Beijing’s expansion of its internal apparatus to the Pacific.”
Wang will visit eight Pacific island nations that China has diplomatic ties with between May 26 and June 4.
He arrives on Thursday in the Solomon Islands, which recently signed a security pact with China despite objections from Australia, the United States, Japan and New Zealand, all of which fear it could upset regional security and give China a military foothold in the Pacific.
China rejects this, saying the pact is focused on domestic policing and criticism by Western countries was interference in the Solomon Island’s sovereign decision-making. read more
Asked to respond to the letter, first reported by Reuters, China’s foreign ministry spokesman Wang Wenbin told a regular media briefing in Beijing that he was unaware of it, adding that China and South Pacific countries “are good friends and partners in mutual respect, equality and mutual benefit and common development”.
“I do not agree at all with the argument that cooperation between China and the South Pacific island countries will trigger a new Cold War,” he added.
Wang’s visit would “consolidate mutual political trust, expand practical cooperation, deepen people-to-people ties and jointly build a closer community of destiny among China’s Pacific island countries”.
The FSM government, which has a defence agreement with the United States as well as an economic cooperation agreement with China, declined to comment to Reuters on the letter.
Price, the U.S. State Department spokesman, said Washington respected the ability of regional countries to make sovereign decisions in the best interests of their people, while adding, referring to China:
“It’s worth noting that PRC has a pattern of offering shadowy, vague deals with little transparency or regional consultation in areas related to fishing, related to resource management, development assistance and more recently, even security practices.”
NEW VISION
A region-wide agreement covering security and trade between China and Pacific islands would represent a shift in Beijing’s focus from bilateral relations to dealing with the Pacific on a multilateral basis.
China circulated the China-Pacific Island Countries Common Development Vision draft document, as well as a five-year action plan, ahead of the Fiji meeting.
It states China and the Pacific islands will “strengthen exchanges and cooperation in the fields of traditional and non traditional security”.
“China will hold intermediate and high-level police training for Pacific Island Countries through bilateral and multilateral means,” the document says.
The action plan outlines a ministerial dialogue on law enforcement capacity and police cooperation in 2022, and China providing forensic laboratories.
The draft communique also pledges cooperation on data networks, cyber security, smart customs systems, and for Pacific islands to “take a balanced approach” on technological progress, economic development and national security.
Chinese telecommunications firm Huawei, which is barred from 5G networks run by several U.S allies, has been repeatedly thwarted in attempts to build submarine cables or run mobile networks in the Pacific by Australia and the United States, which have offered rival bids for the sensitive infrastructure, citing national security.
The communique also proposes a China-Pacific Islands Free Trade Area, and support for action on climate change and health.
In his letter to other leaders, Panuelo said the communique would draw Pacific islands that have diplomatic relations with China “very close into Beijing’s orbit, intrinsically tying the whole of our economies and societies to them”.
He highlighted the risk of being caught in conflict as tensions rise between the United States and China over Taiwan. read more
“The practical impacts, however, of Chinese control over our communications infrastructure, our ocean territory and the resources within them, and our security space, aside from impacts on our sovereignty, is that it increases the chances of China getting into conflict with Australia, Japan, the United States and New Zealand,” he said.
China’s provision of customs systems would lead to “biodata collection and mass surveillance of those residing in, entering and leaving our islands”, he added.
He was also critical of Australia’s lack of action on climate change.
New Australian Prime Minister Anthony Albanese pledged this week to increase climate financing to Pacific islands, saying climate change was their main economic and security challenge. read more
“China has made its intentions clear,” Australia’s foreign minister, Penny Wong, said when asked about the Reuters report.
“So too are the intentions of the new Australian government. We want to help build a stronger Pacific family. We want to bring new energy and more resources to the Pacific.”
Wong, who travels to Fiji on Thursday, has pledged to increase opportunities for Pacific island citizens to work and migrate to Australia.
Register now for FREE unlimited access to Reuters.com
Register
Reporting by Kirsty Needham; Additional reporting by Martin Pollard in Beijing and Daphne Psaledakis, Simon Lewis and David Brunnstrom in Washington; Editing by Lincoln Feast, Bernard Orr
Our Standards: The Thomson Reuters Trust Principles.
May 20 (Reuters) – President Vladimir Putin said on Friday that the number of cyber attacks on Russia by foreign “state structures” had increased several times over and that Russia must bolster its cyber defences by reducing the use of foreign software and hardware.
The websites of many state-owned companies and news websites have suffered sporadic hacking attempts since Russia sent its armed forces into Ukraine on Feb. 24, often to show information that is at odds with Moscow’s official line on the conflict.
“Targeted attempts are being made to disable the internet resources of Russia’s critical information infrastructure,” Putin said, adding that media and financial institutions had been targeted.
Register now for FREE unlimited access to Reuters.com
Register
“Serious attacks have been launched against the official sites of government agencies. Attempts to illegally penetrate the corporate networks of leading Russian companies are much more frequent as well,” he said.
In a meeting with the Security Council, Putin said that Russia would need to improve information security in key sectors and switch to using domestic technology and equipment.
“Restrictions on foreign IT, software and products have become one of the tools of sanctions pressure on Russia,” Putin said. “A number of Western suppliers have unilaterally stopped technical support of their equipment in Russia.”
He said cases of programmes getting blocked after being updated were becoming more frequent.
DATA LEAKS
State communications regulator Roskomnadzor on Wednesday said it had blocked a website that was hosting the personal data of a number of companies’ clients. It did not name the companies.
Russia’s second-biggest bank VTB (VTBR.MM) was quoted by media as saying some customers’ phone numbers had been leaked but there was no risk to their funds.
E-commerce player Wildberries and online marketplace Avito denied reports in Russian media that their data had been leaked.
A data leak in early March exposed the personal details of more than 58,000 people on tech giant Yandex’s (YNDX.O) food delivery app, Yandex.Eda. read more
Yandex.Eda competitor Delivery Club on Friday apologised to users after it suffered a data leak on orders placed by users.
“The data includes information about orders and does not affect bank details. We are doing our best to prevent the dissemination of the data,” TASS news agency quoted the company as saying.
Hacking attacks this month kept video-hosting site RuTube offline for three days and altered satellite television menus in Moscow on Victory Day, when Russia celebrated the 77th anniversary of the Soviet Union’s victory over Nazi Germany. read more
Moscow has long sought to improve its domestic internet infrastructure, even disconnecting itself from the global internet during tests last summer.
However, the unprecedented Western barrage of sanctions imposed in response to Moscow’s military campaign in Ukraine has increased the pressure to make Russia’s IT systems more resilient.
Register now for FREE unlimited access to Reuters.com
Register
Reporting by Reuters; Editing by Kevin Liffey
Our Standards: The Thomson Reuters Trust Principles.
Figurines with computers and smartphones are seen in front of the words “Cyber Attack”, binary codes and the Ukrainian flag, in this illustration taken February 15, 2022. REUTERS/Dado Ruvic/Illustration
Register now for FREE unlimited access to Reuters.com
Register
US: Russian hack aimed at disrupting Ukrainian communications
UK: Hack was ‘deliberate and malicious’
EU: Attack on Viasat caused ‘indiscriminate’ outages
Russia routinely denies it carries out cyberattacks
NEWPORT, Wales, May 10 (Reuters) – Russia was behind a massive cyberattack against a satellite internet network which took tens of thousands of modems offline at the onset of Russia-Ukraine war, the United States, Britain, Canada and the European Union said on Tuesday.
The digital assault against Viasat’s (VSAT.O) KA-SAT network in late February took place just as Russian armour pushed into Ukraine. U.S. Secretary of State AntonyBlinken said the cyberattack was intended “to disrupt Ukrainian command and control during the invasion, and those actions had spillover impacts into other European countries.”
British Foreign Secretary Liz Truss called the satellite internet hack “deliberate and malicious” and the Council of the EU said it caused “indiscriminate communication outages” in Ukraine and several EU member states.
Register now for FREE unlimited access to Reuters.com
Register
The Viasat outage remains the most publicly visible cyberattack carried out since Russia’s invasion of Ukraine, in part because the hack had immediate knock-on consequences for satellite internet users across Europe and because the crippled modems often had to be replaced manually.
“After those modems were knocked offline it wasn’t like you unplug them and plug them back in and reboot and they come back,” the U.S. National Security Agency’s Director of Cybersecurity Rob Joyce told Reuters on the sidelines of a cybersecurity conference on Tuesday.
“They were down and down hard; they had to go back to the factory to be swapped out.”
The precise consequences of the hack on the Ukrainian battlefield have not been made public, but government contracts reviewed by Reuters show that KA-SAT has provided internet connectivity to Ukrainian military and police units. read more
The satellite modem sabotage caused a “huge loss in communications in the very beginning of war,” Ukrainian cybersecurity official Victor Zhora said in March. read more
The Russian Embassy in Washington did not immediately return a message seeking comment. Moscow routinely denies it carries out offensive cyber operations.
Viasat did not immediately return a message. A Viasat official told Reuters in late March that the hackers involved in the initial sabotage effort were still trying to interfere with the company’s operations, although to limited effect. L2N2VW2XC
The satellite modem-wrecking cyberattack remains the most visible hack of the war, but many others have taken place since and not all of them have been made public. read more
“That was the biggest single event,” said Joyce. “It certainly had new and novel tradecraft, but there have been multiple attacks.”
Register now for FREE unlimited access to Reuters.com
Register
Reporting by James Pearson. Writing by Raphael Satter; Additional reporting by William James in London; Editing by William Maclean, Angus MacSwan and Bernadette Baum
Our Standards: The Thomson Reuters Trust Principles.
VILNIUS, April 22 (Reuters) – In April 2021, Russia’s financial intelligence unit met in Moscow with the regional head of Binance, the world’s largest crypto exchange. The Russians wanted Binance to agree to hand over client data, including names and addresses, to help them fight crime, according to text messages the company official sent to a business associate.
At the time, the agency, known as Rosfinmonitoring or Rosfin, was seeking to trace millions of dollars in bitcoin raised by jailed Russian opposition leader Alexei Navalny, a person familiar with the matter said. Navalny, whose network Rosfinmonitoring added that month to a list of terrorist organisations, said the donations were used to finance efforts to expose corruption inside President Vladimir Putin’s government.
Binance’s head of Eastern Europe and Russia, Gleb Kostarev, consented to Rosfin’s request to agree to share client data, the messages showed. He told the business associate that he didn’t have “much of a choice” in the matter.
Register now for FREE unlimited access to Reuters.com
Register
Kostarev didn’t comment for this article. Binance told Reuters it had never been contacted by Russian authorities regarding Navalny. It said that before the war it was “actively seeking compliance in Russia,” which would have required it to respond to “appropriate requests from regulators and law enforcement agencies.”
The encounter, which has not been previously reported, was part of behind-the-scenes efforts by Binance to build ties with Russian government agencies as it sought to boost its growing business in the country, Reuters reporting shows. This account of those efforts is based on interviews with over 10 people familiar with Binance’s operations in Russia, including former employees, ex-business partners and crypto industry executives, and a review of text messages that Kostarev sent to people outside the company.
Binance has continued to operate in Russia since Putin ordered his troops into Ukraine on Feb. 24, despite requests from the government in Kyiv to Binance and other exchanges to ban Russian users. Other major payment and fintech companies, such as PayPal and American Express, have halted services in Russia since the Kremlin launched what it calls a “special operation” to demilitarise and “denazify” Ukraine. One of Binance’s main rivals in Russia, EXMO.com, said on Monday it would no longer serve Russian and Belarusian clients and was selling its Russia business. Some smaller crypto exchanges remain.
CEO Changpeng Zhao, widely known by his initials CZ, has said he is against the war and “politicians, dictators that start the wars” but not against “the people on both sides of Ukraine and Russia that are suffering.” Zhao didn’t comment for this article. Binance referred Reuters to Zhao’s previous statements on the matter.
Legal representatives for Binance told Reuters that “active engagement with the Russian government has now stopped due to the conflict.” On Thursday Binance told users it was limiting services for major clients in Russia because of the latest European Union sanctions on Moscow.
Binance’s trading volumes in Russia have boomed since the war began, data from a top industry research firm shows, as Russians turned to crypto to protect their assets from Western sanctions and a devaluing rouble. In one recent message to an industry contact, Kostarev said Binance’s priority was to ensure the market stayed open, so the exchange wasn’t “making a fuss.” He didn’t elaborate.
Asked by Reuters to clarify Kostarev’s message, Binance said the war and economic crisis could accelerate crypto’s adoption among working-class Russian citizens looking for alternative payment means. Binance added that it is aggressively applying sanctions imposed by Western governments, but would not unilaterally “freeze millions of innocent users’ accounts.”
Reuters Graphics Reuters Graphics
THE FREEDOM OF MONEY
Since its launch five years ago in Shanghai, Binance has grown to dominate the unregulated Russian crypto sector with an estimated four-fifths of all trading volumes, market data shows. Binance said it doesn’t comment on “external data projections” and, as a private company, doesn’t share such information publicly.
Zhao, in 2019, told Russians that Binance’s mission there was to increase the “freedom of money” and “protect users.” Russians flocked to the platform, seeing it as an alternative to a banking system closely monitored by a state they distrusted.
In line with a draft law to regulate crypto companies, Binance agreed with Rosfinmonitoring to set up a local unit in Russia through which authorities can request client data, the Kostarev messages reviewed by Reuters show. Asked whether it had proceeded to set up this local unit, Binance responded, “Should we consider establishing a local entity in Russia in the future, Binance will never share data without a legitimate law enforcement request.”
Navalny’s chief of staff, Leonid Volkov, told Reuters that Russia’s proposed regulatory framework could let the Kremlin identify the opposition group’s crypto donors. Since Navalny’s arrest in January 2021, his anti-corruption foundation has publicly encouraged backers to donate via Binance, telling them this was the safest way to do so because, unlike with bank transfers, authorities would not know donors’ identities.
“These people will be in danger,” said Volkov, who runs the foundation from Lithuania. If Binance wants to protect its customers, Volkov went on, it should “never do anything with the Russian government.” The Kremlin declined to comment on Navalny’s crypto fundraising or Binance’s operations.
In response to Reuters’ questions, Binance said that before the war it was supportive of legislation that would bring clarity to regulation. But the Ukraine conflict and Western sanctions on many Russian banks had made it “virtually impossible for any platform to initiate or consider future plans in the region.”
People close to Binance said it supported the draft law because, once passed, crypto exchanges would be required to partner with Russian banks, allowing customers to deposit and trade significantly more funds.
The finance ministry said in early April it had finished drafting its “bill on the regulation of digital currencies.” People involved in the discussions say the government wants to move quickly to write the bill into law. One lawmaker told parliament’s official newspaper last month the crypto legislation would help mitigate damage to the Russian economy from sanctions.
Among the agencies helping develop the law is Rosfinmonitoring, responsible for combating money laundering and terrorist financing. Though nominally independent, it acts as an arm of the Federal Security Service (FSB), the main successor to the Soviet-era KGB, five people who have interacted with Rosfin said. Rosfin’s director, Yury Chikhanchin, is a security services veteran, according to his official biography.
Marshall Billingslea, a former head of the Financial Action Task Force, a global watchdog which sets standards for authorities combating financial crime, told a conference last year that Rosfin was “firmly under control of the FSB” to ensure that only state-sanctioned transactions were made into and out of Russia. Billingslea said it was “no surprise” to see Rosfin declare Navalny’s network a terrorist organisation after his arrest.
Rosfin, in a written response to Reuters’ questions, said it fully complies with international standards of operational independence in areas including regulating the activities of virtual asset service providers. Chikhanchin didn’t comment.
At least one other crypto exchange did not agree to provide client data to Rosfin due to concerns about how the information could be used and the FSB’s influence on the unit, according to a person familiar with the discussions. Others in Russia’s crypto sector said they were also sceptical about the draft law.
“No one knows if the proposed local office system will be used for good or bad,” said Mike Bystroff, a partner at the Moscow-based Digital Rights Center law firm, who represented Binance when it successfully challenged a ban on its website in January 2021.
Binance’s willingness to engage with Rosfin through 2021 contrasted with its approach elsewhere. Some national regulators have accused the company of withholding information. Britain’s regulator said in August last year a Binance UK unit was “not capable of being effectively supervised” after it refused to answer questions about Binance’s global business. Liechtenstein’s regulator, in a 2020 report, said Binance’s dealings with the body were “non-transparent” as it declined to provide financial information on request. In an article published in January, Reuters reported that Binance cancelled plans to seek a licence in Malta in 2019 due to Zhao’s concerns about the level of financial disclosure required.
Lawyers for Binance said it was “false equivalency” to conflate “distinct issues of our client’s responsiveness to law enforcement disclosure requests, with licensing applications for its own business that would involve wholly different types of disclosures.” Binance said it was “the most active participant in the industry” working with law enforcement to “develop best practices, mitigate/thwart new methods of criminality and prevent illicit proceeds from entering the marketplace.”
Binance said any suggestion that it refuses to share data with authorities making legitimate requests is “absolutely false.” It said it has strict policies and procedures to assess such requests and reserves the right to decline “when there is no legal purpose.”
“DON’T BE AFRAID”
Zhao first travelled to Russia as Binance CEO in October 2019. At a tech forum in Moscow, he told an audience to stop being “a slave” to traditional finance. His slideshow cited the 18th century philosopher Jean-Jacques Rousseau: “A man is born free, but everywhere he is in chains.”
Binance targeted Russia for expansion, noting in a 2018 blog post the country’s “hyperactive” crypto community. The exchange partnered with Belize-based payment company Advcash to enable users to deposit and withdraw roubles using bank cards. Advcash said the partnership is still active.
Binance gradually took a commanding share of the Russian crypto market. By mid-2021, Binance’s trading volumes in Russia had made it the exchange’s second-largest market globally after China, including among “VIP” clients who trade large amounts of crypto, a person with direct knowledge of the company’s data said. In March this year, Binance processed almost 80% of all rouble-to-crypto trades, according to data from researcher CryptoCompare, worth some 85 billion roubles ($1.1 billion).
“People just trusted it. It was always a step ahead of competitors,” said Maksim Sukhonosik, a Russian crypto trader and co-founder of blockchain consulting firm Colibri Group.
However, in 2020, Binance began drawing the attention of Russian authorities, who were at the time hostile to cryptocurrencies. Russia’s communications watchdog banned its website for allegedly carrying prohibited material about buying crypto. Binance challenged the decision in court and the ban was withdrawn in January 2021, according to statements Binance posted in its Telegram group for Russian users.
Binance told Reuters the lawsuit was dismissed on procedural grounds because the firm wasn’t properly notified. The regulator did not respond to requests to comment.
Navalny was arrested that month on his return to Russia, after recovering from poisoning with the nerve agent Novichok. He, along with the U.S. and British governments, blamed the FSB for the attack, an accusation Russia rejects. The FSB did not respond to questions for this article.
A core part of Russian prosecutors’ case against Navalny was the financing of his foundation. At his trial, they accused him of stealing over 350 million roubles, then worth some $4.8 million, that the foundation received as donations. Navalny denied the charge. Volkov told Reuters that security forces interrogated thousands of supporters who donated through Russian banks. None of these donors had used digital currencies, he said.
Navalny’s crypto fundraising surged after his arrest. The more than 670 bitcoin that supporters have donated via Binance and other exchanges would now be worth almost $28 million, according to blockchain data, though Volkov said the real amount raised is less because the bitcoins were sold upon receipt at a lower price.
When a Russian court outlawed Navalny’s foundation in June 2021, ruling it to be an “extremist organisation,” the network told supporters on Twitter to “learn how to use cryptocurrencies” and recommended they open Binance accounts. In a later how-to guide, the foundation advised donors to upload identity cards to Binance to verify their accounts, noting there were no instances yet of any crypto exchange providing information to Russian authorities. “You don’t need to be afraid,” the guide said.
After the explosion in Navalny’s bitcoin donations, the FSB started exploring how to identify his crypto donors, according to the person familiar with the matter. The FSB, the person said, instructed Rosfin to find a way to achieve that goal. Responding to questions from Reuters, Rosfin said it is prohibited from disclosing measures to combat terrorist financing. It said Navalny was involved in “terrorist activity.”
Reuters Graphics Reuters Graphics
“OUT OF THE SHADOWS”
In April 2021, a Russian non-profit organisation called the Digital Economy Development Fund invited Binance to a private meeting with Rosfin at a government building in Moscow, according to the invitation seen by Reuters. The organisation is headed by a former top advisor to Putin on internet policy, German Klimenko, and was set up in 2019 to develop Russian technologies. The fund’s website says one of its partners is the Russian trade and industry ministry. Kostarev, the Binance director, chairs the fund’s committee on digital currencies.
Neither the Digital Economy Development Fund nor Klimenko responded to emails seeking comment.
Another exchange, OKX, originally Chinese but now based in the Seychelles, was also invited, a person familiar with the meeting said. An OKX spokesperson said the company declined the invitation, without giving a reason.
At the meeting, according to Kostarev’s messages, Rosfin said it wanted exchanges to register with the agency so they could receive its requests for client information. Kostarev wrote to the business associate to say he didn’t view the demand as a problem. He told the associate the FSB was interested in crypto, too. He didn’t elaborate.
Asked about Kostarev’s meeting with Rosfin, Binance said, “We did not work with, collaborate, nor partner with that organization.” Five months later, Rosfin sent Binance a questionnaire, reviewed by Reuters, seeking more information on the exchange’s background checks on clients and its “preferred channel of communication” with authorities for requests on crypto transactions. Asked about this communication, the firm said, “Binance takes its compliance obligations seriously and welcomes opportunities to consult with regulators.”
Kostarev told the business associate in a message around the time of the questionnaire that Binance was stepping up efforts to engage with the government on crypto regulation. Rosfin was prepared to support Binance in this, Kostarev wrote.
But the Russian central bank was opposed to Moscow regulating cryptocurrencies and allowing the market to flourish out of concern that it would encourage criminal activity. Many of the world’s central banks, whose mission includes controlling money supply, have similar qualms about the wild world of crypto. Governor Elvira Nabiullina told Russia’s parliament in November “a responsible state should not stimulate their distribution.” A spokeswoman for the central bank declined to comment.
In January of this year, Binance announced it had hired a senior central bank official, Olga Goncharova, as a director for the Greater Russia region. Goncharova would build “systematic interaction” with authorities in Russia, Binance said.
After Nabiullina proposed a ban on crypto use on Russian territory later that month, Kostarev told the business associate in a message that Binance was “in a war” with the central bank. All other Russian government agencies wanted to legalise digital currencies, Kostarev said. Support for crypto was indeed building in Moscow. Following Nabiullina’s call for a ban, a top official at the finance ministry publicly backed the law that would require crypto exchanges to turn over names of their customers, saying it was necessary to ensure “transparency.”
Putin then intervened. In a televised meeting with ministers on Jan. 26, he asked the government and central bank to reach a “unanimous opinion” on crypto regulation. He noted Russia had “certain competitive advantages” in the sector, such as surplus electricity, the most crucial input for the power-hungry creation of cryptocurrency.
Two weeks later, the government approved a plan for crypto regulation, drawn up by agencies including Rosfin and the FSB, that would bring the “industry out of the shadows.”
Kostarev tweeted in response to an article on the announcement, “Finally some good news.”
In a document describing the proposed regulatory framework, the government said that without such a system law enforcement “will not be able to respond effectively to offences and crimes.” The government would create a database of cryptocurrency wallets related to terrorism financing, the government said, and exchanges would have to disclose information about their customers to Rosfin. The finance ministry submitted an early version of the draft law on Feb. 18.
Six days later, Russian forces invaded Ukraine. Binance’s rouble trading exploded as Western nations imposed sanctions on Russia and the Kremlin limited foreign currency withdrawals. CryptoCompare’s data shows Binance’s average daily volume for rouble transactions for the initial three weeks of the war was almost four times higher than during the month before.
On Binance’s Russian Telegram group, some volunteer customer representatives, known as Binance Angels, endorsed traders’ posts thanking Binance for not blocking accounts, including one message asking Binance not to “fall for this war crap.” Binance has enlisted hundreds of Angels around the world to promote the exchange to local crypto traders.
“Binance does not interfere in politics,” one Angel wrote. Binance told Reuters that Angels are not spokespeople for the company.
Binance also drew praise from Putin’s United Russia party. One lawmaker, Alexander Yakubovsky, speaking to the official parliament newspaper on March 14, called Binance the “leading experts in our country” advising politicians on crypto regulation. The company “is under strong pressure from countries unfriendly to Russia,” he said. Binance said they had never met or communicated with Yakubovsky and his opinions were his own.
($1 = 78.2830 roubles)
((Reporting by Angus Berwick in Vilnius and London and Tom Wilson in London; edited by Janet McBride))
Register now for FREE unlimited access to Reuters.com
Register
Our Standards: The Thomson Reuters Trust Principles.
