The CNIL, France's data protection authority, has issued a formal notice to the company in regards to how it fails to comply with European data protection law.
CNIL has given Facebook three months to make the necessary changes to comply with the EU's laws. If the company is able to do this, it will not face sanctions from the data protection agency. Facebook is currently reviewing CNIL's order which it is confident that it currently complies with.
User data about sexual orientation, religious beliefs and political views are also collected by Facebook without explicit consent from its users. When signing up for the site, users are also not properly informed of the ways in which the company will collect and use their data according to the CNIL.
Advertising cookies are also set up by Facebook without properly informing users and obtaining their consent. CNIL is also concerned that users have no way to prevent their info from being compiled and used for targeted advertising.
Facebook will have to comply with CNIL's requests if plans to continue operating in the EU where the social network currently has around 300 million users.