Google Warns EU Data Sharing Plans Could Lead to Cybercrime and Hacking
Company's privacy and security staff express concerns over Digital Markets Act proposals for Search and Android, citing reidentification risks and increased fraud.
Quick Look
- Google's top privacy and security staff warn that the EU's Digital Markets Act plans, requiring the company to open up Search data and Android OS, could lead to increased fraud and hacking.
- They claim proposed anonymization methods are weak and data could be reidentified, while competitors argue the risks are overstated and addressable.
AI-generated summary
Why It Matters
The EU's Digital Markets Act (DMA), adopted in late 2022, aims to compel dominant tech companies, designated as 'gatekeepers,' to open their systems and data to competitors, fostering competition and reducing reliance on a few firms.
Googleâs top privacy and security staff have warned that plans in Europe, designed to get it to open up its search data and Android operating system to competitors, could lead to peopleâs search queries being hacked and an increase in cybercrime across the content, according to multiple interviews and documents shared with WIRED.
Mountain Viewâs alarm comes as European Commission officials are set to make final decisions next month in two cases, around Google Search and Android interoperability, under the European Unionâs landmark Digital Markets Act competition rules. The rules, which were first adopted at the end of 2022, are designed to force open Big Tech companies that dominate markets, make it easier for others to compete, and reduce reliance on a handful of firms.
Heather Adkins, Googleâs vice president of security engineering and a founding member of its security team, says the company has concerns around the proposed changes for both Search and Android. In April, the European Commission published initial details, plus now-closed public consultations, on how Google should open up its search dataâsharing anonymized search data with rivalsâand allowing other AI services to have more access to the Android operating system.
âIf implemented as described today, I think within a short period of time on Android, weâd see a significant increase in fraud in the EU,â Adkins tells WIRED. âThe fraudsters are creative and informed. Past implementation [date], I would give it maybe weeks before we began to see an increase in fraud in Europe.â
Meanwhile, Adkins also claims the proposed changes to Google Search could result in peopleâs search queries being de-anonymized by bad actors and search data shared with small companies being a target for criminal hackers.
The European Commissionâs proposals are complex, impact technical systems with billions of users, and are steeped in the continentâs competition laws. As European officialsâ deadline of July 27 for announcing its final decisions approaches, Google has been increasingly vocal in its opposition to the parts of the plans it does not believe will work. Some Google competitors, who could benefit from accessing the data, say the plans have less privacy and security impacts than has been suggested.
These competitors, independent researchers, and academics who have responded to the consultations have pointed out how Europeâs plans could work and also potential flaws with them. Rebuttals and counter rebuttals have been issued as competition law collides with privacy impacts. Spokespeople for the European Commission acknowledged WIREDâs request for comment but did not respond to questions about Googleâs concerns.
Since the end of 2022, the Digital Markets Act has allowed European officials to designate tech companies that have large market shares as âgatekeepersâ and use the rules to get them to open up their systems and data to competitors. Google parent company Alphabet, Amazon, Apple, Booking, ByteDance, Meta, and Microsoft are all considered gatekeepers, with their productsâfrom LinkedIn and TikTok to Instagram and YouTubeâbeing subject to the rules.
Googleâs search business, which is estimated to make up 90 percent of the worldwide search market, is, unsurprisingly, the only search engine that includes the rules. Under the DMA, Google already shares some data with search engine competitors; however, the planned changes alter how this would work.
The plans broadly say Google should provide online search engines with access to search data âon parâ with the data that Google itself collects, including âany query inputâ people enter into Google Search plus some other metadata. Put simply: what people type into Google. It will also have to share click data and the ranking results of search queries. âThis is a unique data set which only Google has had access to for many, many years, and thereâs not a straightforward way for any other competitor to build or obtain access to something similar,â says Alissa Cooper, the executive director of the tech policy research hub the Knight-Georgetown Institute.
These sharing requirements, according to the EUâs proposals, are protected by anonymization methods to protect individualsâ search queries being linked back to them. Those measures will be accompanied with contracts between Google and search competitors that it shares data with, broadly saying they cannot try to reidentify users, link the search data with other information, and that information must be shared securely.
Google, however, claims in one document seen by WIRED that the proposed anonymization techniques contain âdeep weaknessesâ and it would have to release search data at âmuch higher levels of granularityâ than it currently does. Google staff say they have proved the data can be reidentified, and if this is the case, âit is not anonymous in the first place.â
âPrivacy engineers have proved that this data can be easily reidentified. If data can be reidentified, it is not anonymous in the first place. And the law specifically requires it to be anonymized,â says David Lewis, Googleâs director of the companyâs privacy advisory for Europe, the Middle East, and Africa. âWhether Google has a vested interest or not is irrelevant to the question of whether millions of people's most private questions may end up with someone they don't know and never expected would see their searches.â
The company previously said, according to Reutersâ reporting, that its security red team could reidentify search users based on the data in âless than two hours.â The specific details of those tests have not been published.
âAnonymization is hard, and youâve got to have the right technical experts at the table to come up with the solutions,â says Googleâs Adkins, who suggests there is a âmiddle groundâ to be found. Adkins says large language models could also be an âideal toolâ for helping to de-anonymize data if it falls into malicious hands and adds that the companyâs threat modeling also includes the data its shares being a target for hackers.
âOur working assumption is, if we are asked to hand over data we lose control of it, and we just have no functional execution capability to secure it once itâs beyond the border of what we control,â Adkins says of the contractual approach outlined in the plans. âIf youâre a small European startup and youâre getting this data from Google, youâre going to get hacked, and thatâs just the kind of reality of the situation,â Adkins claims. The proposals include requirements on companies receiving search data to undergo independent audits of their setups and how data will be securely stored.
Europeâs search proposals, plus Googleâs response to them, have seen mixed and divisive views from privacy advocates, academics, and lawyers since they were released for public consideration in recent months. Independent security expert Lukasz Olejnik wrote in a long blog post discussing possible risks that the âsanitizationâ measures around the data âare not adequate for this volume, scale, and privacy landscape.â
The risks of reidentification of peopleâs search queries should be âevaluatedâ against the proposed protection systems around the data sharing, Lena Hornkohl, an assistant professor of European law at the University of Vienna, has written. Privacy-focused search engine Brave previously told Tech Radar it does not believe the current proposals would result in anonymous data and that they create a âsevere privacy riskââalthough it said the European Commission should take other measures to limit Googleâs dominance instead. Other competitors believe Googleâs concerns are unfounded.
âThe legal standard here doesnât require eliminating every theoretical risk of reidentificationâit requires reducing it to an insignificant level, which the Commission's approach does,â suggests Kamyl Bazbaz, chief communications and policy officer at the privacy-focused search engine DuckDuckGo. âThe concerns Google raises are addressable inside the existing framework.â
Cooper, from the Knight-Georgetown Institute, says the technical and contractual proposals put forward by the Commission appear to be a âvery robust regimeâ and the data types that would be shared could âunlockâ more competition in search. However, she says the answers to privacy and security questions around anonymization and various risks are âknowableâ as Google already has the data. âWe propose that independent experts have access to the data and be able to validate the properties that the data-sharing is supposed to have,â Cooper says.
Away from search, the EUâs proposals for Android could see Google have to further open up the operating system to allow AI firms and agents to use âwake wordsâ on phones and tablets, as well as potentially allowing AI services from other companies to interact with installed applications and data. âI think we have the same goals in mind,â Eugene Liderman, the director of Googleâs Android security team, tells WIRED, adding that speedily implementing the plans could create more risks. âItâs just that we have different opinions on how to get there and the pace at how we get there.â
Both Liderman and Adkins say Google is concerned that scammers and fraudsters could exploit greater access to appsâ permissions under the proposals. Liderman says providing extra access to microphones, cameras, and onscreen information permissions would undermine mobile security best practices. Apple has, in a rare move, also supported some of Googleâs position on operating system access. âWe need to put the proper tools in place both from an OS perspective but also from a transparency and accreditation perspective,â Liderman says.
What to Watch
AI outlook â possibilities, not facts
European Commission will make final decisions on Google Search and Android interoperability cases.
Very likely ¡ Within weeks
Open Questions
- What are the specific 'deep weaknesses' in the proposed anonymization techniques?
- What 'middle ground' solutions does Google propose for secure data sharing?
- What were the specific details of Google's 'red team' reidentification tests?






