News & Analysis as of

European Union Enforcement Actions Personal Data

The European Union is an economic and political partnership comprised of 27 nations within the Eurozone. The EU was established in 1948 to promote stability and cooperation among member states in the aftermath of... more +
The European Union is an economic and political partnership comprised of 27 nations within the Eurozone. The EU was established in 1948 to promote stability and cooperation among member states in the aftermath of WWII. The EU maintains a common currency as well as several intranational institutions, including the European Parliament and the European Commission. less -
DLA Piper

EU: CJEU Insight 

DLA Piper on

October has already been a busy month for the Court of Justice of the European Union (“CJEU”), which has published a number of judgments on the interpretation and application of the GDPR, including five important decisions,...more

Pillsbury - Consumer Protection Dispatch

GDPR Enforcement: Lessons from Recent Data Privacy Penalties

Pillsbury - Consumer Protection Dispatch on

Recent decisions by the French data protection authority (CNIL) have highlighted the importance of GDPR compliance, particularly in the areas of data retention, consent for processing sensitive personal data, and marketing...more

Ius Laboris

Massive fine for Uber of EUR 290 million

Ius Laboris on

On 26 August the Dutch Data Protection Authority (DPA) fined Uber EUR 290 million for a breach of the General Data Protection Regulation (GDPR). Following a number of complaints from French Uber drivers, the DPA found that...more

Barnea Jaffa Lande & Co.

GDPR – Company Fined for Improper Data Collection

Barnea Jaffa Lande & Co. on

The French Data Protection Authority (CNIL) recently imposed a EUR 310,000 fine, representing 1% of its turnover, on FORIOU, a telemarketing company promoting loyalty programs. The fine stemmed from FORIOU’s use of...more

A&O Shearman

Investigations update: Hong Kong authorities ramp up enforcement in virtual assets and other sectors

A&O Shearman on

Hong Kong has seen cryptocurrencies grow in popularity, highlighting the need for appropriate licensing regimes (implemented in the form of virtual asset service providers (VASPs)), bolstered by active enforcement actions. ...more

White & Case LLP

The Data Act – the EU's bid to "ensure fairness in the digital environment and a competitive data market" – has been adopted

White & Case LLP on

On November 27, 2023, the European Union ("EU") adopted the final text of the Data Act, marking an effort to create a harmonized, cross-sectoral data sharing framework with the stated goal of ensuring fair access to and use...more

Alston & Bird

What You Should Know About the EU Data Governance Act

Alston & Bird on

Last month, the European Union’s new Data Governance Act (DGA) came into effect. Our Privacy, Cyber & Data Strategy Group provides an overview of the key features of the DGA and discusses how the new law may impact businesses...more

Latham & Watkins LLP

CNIL Fines Health Website for Unlawful Data Processing

Latham & Watkins LLP on

The French Data Protection Authority imposed a €280,000 fine for GDPR infringements and a €100,000 fine for violation of French cookie rules. On 11 May 2023 the French Data Protection Authority (the CNIL) handed down its...more

Spirit Legal

Restitutio in Integrum

Spirit Legal on

A Fresh Perspective on Data Protection and Damages - Opening statements by Peter Hense at a University of Vienna panel titled "EU Future Talks, Non-Material Damages for GDPR Violations: Quo Vadis Österreichische Post...more

WilmerHale

Italy’s Privacy Regulator Takes Action Against ChatGPT

WilmerHale on

On March 31, 2023, Italy’s privacy regulator (the “Garante”), announced an immediate temporary limitation on the processing of data of individuals residing in Italy by OpenAI’s ChatGPT, the popular artificial intelligence...more

McDermott Will & Emery

European Privacy Risk Exposure

McDermott Will & Emery on

2022 was yet another eventful year in terms of GDPR compliance. The continued evolution of the enforcement landscape, with increasing number of sanctions and individuals exercising their rights required time and attention...more

Wyrick Robbins Yates & Ponton LLP

Less Is More, Too Much Is Not Enough: What the Irish DPC’s €390 Million Fine Against Meta Could Mean for Your Privacy Notice

Wyrick Robbins Yates & Ponton LLP on

European data protection authorities kicked 2023 off with a bang when, on January 4, the Irish Data Protection Commission (DPC) announced that Meta Platforms Ireland would be fined a total of €390 million (roughly $414...more

WilmerHale

EDPB Adopts Guidelines on Calculation of GDPR Fines and on Facial Recognition Technology in Law Enforcement

WilmerHale on

On May 16, 2022, the European Data Protection Board (EDPB), the independent body of data protection supervisors that promotes consistent data protection rules and application thereof throughout the European Union (EU),...more

Alston & Bird

Italian Supervisory Authority Imposes 20 Million EUR Fine on Controller Outside of Europe

Alston & Bird on

The Italian Garante per la Protezione dei dati Personali (‘Italian SA’) published a decision of February 10, 2022 in which it imposes a 20 million EUR fine on a company outside of Europe for violation of the EU General Data...more

Dechert LLP

Belgian DPA Fines IAB: Rough Waters Ahead for Ad Industry

Dechert LLP on

On February 2, 2022, the Belgian Data Protection Authority (“DPA”) issued a decision finding that the Interactive Advertising Bureau ("IAB”) Europe’s Transparency and Consent Framework (“TCF”) violates key provisions of the...more

Robinson+Cole Data Privacy + Security Insider

Irish DPA Hits WhatsApp with $266M Fine for Alleged GDPR Violations

Robinson+Cole Data Privacy + Security Insider on

When GDPR became effective three years ago, companies took notice of the fines and penalties attached to violations of the stringent privacy law—4 percent of global annual sales....more

K&L Gates LLP

German Supervisory Authority Initiates Post-Schrems II Enforcement Against EU Companies Using U.S. Service Providers

K&L Gates LLP on

The Bavarian Data Protection Authority recently prohibited a European company from using U.S. newsletter provider Mailchimp in a first-of-its-kind decision. Since the Schrems II decision of the Court of Justice of the...more

BakerHostetler

International Data Protection Update – First Quarter 2021

BakerHostetler on

This quarterly update highlights some of the international data protection issues that have caught our attention, and the attention of our clients, in the past three months....more

Hogan Lovells

Spanish DPA shakes the privacy status quo in Spain – highest fines yet on personal data

Hogan Lovells on

The Spanish Data Protection Agency (“Spanish DPA”) decided to start 2021 the same way it ended 2020: by imposing the highest fines to date (EUR 5,000,000 and 6,000,000) to two large Spanish financial entities. ...more

Epiq

Comply or Get Fined: 2020 GDPR Fines are the Highest on Record

Epiq on

The European Union’s (EU) General Data Protection Regulation (GDPR) has been in effect since May 2018. The law’s goal of protecting EU citizens’ personal information and privacy seems to be coming into fruition. In the past,...more

Hogan Lovells

German court drastically reduces GDPR fine

Hogan Lovells on

Germany has seen a couple of record GDPR fines since the German Data Protection Authorities (DPA) issued their guidance paper on how to measure GDPR fines in October 2019. One of these DPA sanctions was recently subject to...more

Barnea Jaffa Lande & Co.

H&M Fined EUR 35 Million for Violating Employee Privacy in Germany

Barnea Jaffa Lande & Co. on

In early October, the Data Protection Authority in Hamburg, Germany announced that the clothing retailer H&M committed severe violations of its employees’ privacy. Because of these European General Data Protection Regulations...more

Hogan Lovells

French Court refuses to suspend Microsoft’s hosting of a public health data lake despite CNIL opinion (the Health Data Hub case –...

Hogan Lovells on

On October 14, 2020, the French Administrative Supreme Court (Conseil d’Etat) published its decision in a lawsuit requesting that the French health data platform (Health Data Hub) be suspended for breach of the GDPR in light...more

Polsinelli

H&M Fined 37.8 Million Dollars for Alleged GDPR Violations

Polsinelli on

What Happened? On October 1, 2020, the Hamburg Data Protection Commissioner (“Hamburg DPA”) fined clothing retailer H&M 37.8 million dollars (EURO 35.2 million) for several violations of the GDPR....more

Polsinelli

Client Update: H&M Fined 37.8 Million Dollars for Alleged GDPR Violations

Polsinelli on

What Happened? On October 1, 2020, the Hamburg Data Protection Commissioner (“Hamburg DPA”) fined clothing retailer H&M 37.8 million dollars (EURO 35.2 million) for several violations of the GDPR....more

77 Results
 / 
View per page
Page: of 4
Next »

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide