These letters typically demand €100 in damages and €90 in legal fees, along with a request for information about the data processed on the website.
Defining the technical issue
Many websites use Google Web Fonts, a free library for fonts and typography elements. It ensures optimal display across all devices. In many systems, Google Fonts are activated by default — often without the operator’s knowledge.
When fonts are loaded dynamically , they are retrieved directly from Google’s servers. In this process, the IP address of the website visitor is transmitted to Google. Since an IP address is considered personal data , it may not be shared with third parties without explicit consent. This is the basis for the current warning letters.
Determining whether your website is affected
You can quickly check whether Google Fonts are dynamically embedded using these tools:
Dealing with the situation
If you have not received a warning letter:
- Check your website using the tools above
- Seek support if needed — we are happy to help
If you have already received a warning letter:
- Check whether Google Fonts are dynamically embedded and switch to local hosting
- Review log files and analytics tools: Was the referenced IP address stored? This is essential for the GDPR information request
Don’t forget the next steps:
- Respect all deadlines (usually 14 days from the date of the letter)
- Provide the GDPR‑required information:
- If the IP address was not stored --> issue a negative response.
- If it was stored → provide detailed information.
- Report the warning letter to the relevant industry association (e.g., WKO). Many provide template letters to reject damage claims
- File a complaint with the Bar Association of Lower Austria : https://raknoe.at/
For ongoing updates and differing legal opinions, we recommend: https://abmahnung.wtf
Disclaimer
If in doubt, have your individual response reviewedby a lawyerbefore sending it.
