Today, June 5th 2018, the European Court of Justice (ECJ) ruled that the administrator of a Facebook Page is to be seen as a joint controller together with Facebook and thus also responsible for the processing of personal data of Facebook fanpage visitors under EU data protection.
While this judgment was based on the former EU data protection rules which were just replaced on May 25th 2018 by the General Data Protection Regulation (GDPR), it still is important also in the context of the new legal framework because terms and concepts in that area have remained the same. Therefore, the ECJ decision confirms the view that no gaps in responsibility must be allowed in data protection law and the protection of the fundamental rights of individuals must be ensured efficiently.
See the EJC press release in English with further link to the ruling.