Jena, March 11, 2026. The Higher Regional Court (OLG) Jena has, in a landmark ruling, ordered the Meta group to pay 3,000 euros in damages. The judges classified the use of secret tracking pixels for mass data collection without user consent as a serious violation of current data protection laws.
- Court: Higher Regional Court (OLG) Jena
- Date of Judgment: March 2, 2026
- Case Number: 3 U 31/25
- Defendant: Meta Platforms
- Decision: 3,000 euros in damages for the plaintiff
- Subject Matter: Illegal data collection through third-party scripts (tracking pixels)
Secret Collection of Sensitive Data
At the center of the proceedings were the ubiquitous tracking scripts of the Facebook and Instagram parent company. The court viewed their use as systematic and unjustified mass data collection. According to the grounds of the judgment, the pixels capture sensitive information—such as health research on medical portals—even when users are not logged into Meta services and have not provided explicit prior consent for data processing.
The Jena judges explicitly justified the relatively high damage amount of 3,000 euros by citing the “intensive and long-lasting monitoring of the private life” of the plaintiff.
High Liability Risk for Website Operators
The ruling extends far beyond this specific individual case and carries significant implications, particularly for companies and website operators. Although the lawsuit in this case was directed specifically against the tech corporation, the corresponding tools are voluntarily integrated into their own code by countless site operators. Legal experts assume that site operators who integrate third-party scripts without a watertight technical consent solution (Consent Management) now face an enormous liability risk and must expect a wave of consumer lawsuits.
Support from EU Data Protectors
The strict line taken by the Jena judiciary is supported by current developments at the European level. In early March, the European Data Protection Board (EDPB) opposed plans by the EU Commission within the “Digital Omnibus” package, which proposed a softening of the definition of personal data. In the future, data protection is to be anchored even deeper in the code and not merely dismissed through superficial cookie banners.
Background: The OLG Jena and the GDPR
The Higher Regional Court Jena, located at Rathenaustraße, is the highest ordinary court of the Free State of Thüringen. Rulings in civil and IT law matters at this level often have a nationwide signaling effect and frequently serve as a precursor for landmark decisions at the Federal Court of Justice (BGH).
Prevention for Webmasters: To avoid fines under Art. 30 GDPR (which can amount to up to 2 percent of annual turnover) or civil lawsuits, IT security experts currently recommend a complete audit of one’s own web infrastructure. External scripts and pixels may only transmit data to external servers once the visitor has actively and informatively agreed via a consent banner (opt-in procedure). Merely providing information in the privacy policy is no longer legally sufficient.
Source:
OLG Jena overturns Meta tracking – EU regulators tighten data protection
Transparency Note: This article was created automatically, editorially reviewed, and expanded with AI support.