UK & Italy Lead the Way for 2020 GDPR Penalties
Jan20

UK & Italy Lead the Way for 2020 GDPR Penalties

Finbold, the online financial news and analysis portal, has released a report detailing the level of fines sanctioned during 2020 for violations of the European Union’s General Data Protection Regulation. It reveals that some €171.3m in financial penalties have been sanctioned by the various data protection agencies in EU Member States during the time period from January 1 2020 to December 31 2020. 299 is the total number of 299 GDPR...

Read More
GDPR Breach Impacting Over 400,000 Customers Results in €22m Penalty for BA
Oct29

GDPR Breach Impacting Over 400,000 Customers Results in €22m Penalty for BA

A £20 million (€22m) General Data Protection Regulation (GDPR) fine has been sanctioned against British Airways in the United Kingdom following a breach that affected the private data of more than 400,000 customers. Following an investigation by the Information Commissioner’s Office (ICO) when the breach was first reported, a financial penalty of £184 million (€204 million) was imposed on BA. British Airways appealed the penalty. The...

Read More
Ireland Facebook Ordered to Stop Data Transfers to US by Irish DPO
Sep11

Ireland Facebook Ordered to Stop Data Transfers to US by Irish DPO

A preliminary order has been handed down by Ireland’s Data Protection Commission (DPC) ordering Facebook to stop sending personal data transfers from Ireland to the United States. This order is a result of the European Union Court ruling in July, referred to as Schrem II, that stated it is illegal for any personal data being transferred from the EU to the US if it can be monitored by US government agencies or federal authorities. What...

Read More
TikTok Data Management Being Investigated by CNIL in France
Aug15

TikTok Data Management Being Investigated by CNIL in France

It has been revealed that the data protection authority in France, the CNIL, is about to review the data operations of TikTok. TikTok has been trying to appoint the Data Protection Commission (DPC) in Ireland as its lead authority in Europe. It has done so by establishing a base in Ireland to manage private data for EU-based users. Due to this the group believes that the investigation in France may be deemed invalid. The DPC is...

Read More
Record Fine Follows Breach of GDPR Data Subject Rights by Dutch Credit Registration Bureau
Jul14

Record Fine Follows Breach of GDPR Data Subject Rights by Dutch Credit Registration Bureau

The Credit Registration Bureau (BKR) in the Netherlands has been order to pay a €830,000 ($937,000) General Data Protection Regulation (GDPR) fine after being found guilty of infringing data subjects’ rights. BKR was found to be charging fees and making it difficult for data subjects to access their personal data, a right which is given to data subjects in GDPR legislation. Official complaints had been filed in relation to the...

Read More