fbpx

Download free GDPR compliance checklist!

Category Archives for "Other"

Brazil fines Facebook $1.6 million over improper data sharing

Brazil announced that it had fined Facebook $1.6 million over improperly sharing user data with Cambridge Analytica.

In issuing the fine, the Department of Consumer Protection said the data of 443,000 Facebook users was “misused” by developers of the Facebook app “thisisyourdigitallife.”

The agency ruled the data was used “for questionable purposes and without the represented parties being able to demonstrate any modifying fact that that number was actually smaller.”

Source: Brazil fines Facebook $1.6 million over improper data sharing | TheHill

U.S., EU Enforcers Target Big Tech, Children’s Privacy in 2020

European and U.S. regulators are likely to ramp up enforcement of privacy laws this year, especially children’s privacy, and wrap up probes of big technology companies.

The scrutiny creates a risk for tech companies, including Facebook and Google, that regulators will seek fines or force changes in how they process data as children flock to their platforms.

Source: U.S., EU Enforcers Target Big Tech, Children’s Privacy in 2020 (1)

Belgian Supervisory Authority Imposes Cookie Fine

On December 17, 2019, the Belgian Supervisory Authority imposed a fine of €15,000 on an company operating a legal information website with approximately 35,000 unique monthly visitors for violations regarding use of cookies.

According to supervisory authority, company provided insufficient information about the cookies deployed on the website. Moreover, the cookie policy was only available in English, whereas the website targeted Dutch and French-speaking readers.

Further, the website did not obtain opt-in consent for certain types of cookies used, including first-party analytics cookies, and where consent was obtained, it was not sufficiently granular. Also, there was no easy way for users to withdraw consent.

Source: Belgian Supervisory Authority Imposes Cookie Fine

NSA Data Storage Poses Risk to Civil Liberties, Watchdog Says

An audit conducted by the National Security Agency inspector general raises questions about the intelligence agency’s data retention policies.

The National Security Agency collects and stores a gargantuan amount of signals intelligence data in various databases and its own cloud, but a December audit by its inspector general suggests the agency’s penchant for keeping some data too long could pose civil liberties concerns.

The audit defines SIGINT data as communications or electronics intelligence or foreign instrumentation intelligence collected pursuant to the Foreign Intelligence Surveillance Act and Executive Order 12333.

Source: NSA Data Storage Poses Risk to Civil Liberties, Watchdog Says – Nextgov

German Telecommunications Company Fined 9.5 Million Euros for GDPR Violation

German Federal Data Protection Supervisory Authority (BfDI) imposed a 9.55 million Euro fine on the telecommunications company 1&1 Telecom GmbH.

The BfDI found that the authentication procedures used by 1&1’s customer helpline were insufficient and failed to satisfy the requirements of Art. 32 GDPR. The company announced that it will challenge the order, arguing that the size of the fine is disproportionate.

Source: German Telecommunications Company Fined 9.5 Million Euros for GDPR Violation | Inside Privacy

TikTok to Pay $1.1 Million to Settle Kids’ Data Collection Suit

TikTok and its parent company ByteDance have agreed to pay $1.1 million to settle a proposed class action alleging that the app Musical.ly violated children’s privacy laws by collecting their data and operating the app “in a reckless and unlawful manner for commercial gain.”

Complaint against TikTok alleged that Musical.ly—which was acquired by ByteDance 2017 and later rebranded as TikTok— “surreptitiously tracked, collected, and disclosed the personally identifiable information and/or viewing data … of minor children, and then sold that data to third-party advertisers so they could, in turn, market their products and services” on the app.

Source: TikTok to Pay $1.1 Million to Settle Kids’ Data Collection Suit

Hungary imposed a fine of EUR 3.6 M on Facebook

The Hungarian Competition Authority – GVH – found that Facebook Ireland Ltd. had infringed competition law when it advertised its services as being free of charge on its home page and Help Centre.

While it was true that users did not have to pay for the concerned services, Facebook benefited economically from the users’ data and activities, with users in this way paying for the services provided by the undertaking. The GVH imposed a fine amounting to a total of EUR 3.6 M, which is the highest fine that the Authority has ever imposed in a consumer protection case.

Source: GVH imposed a fine of EUR 3.6 M on Facebook – GVH

Facebook warns EU regulators seeking data access about privacy, liability risks

Facebook warned European Union regulators on Monday against forcing tech giants to open their vast troves of data to rivals, saying such a move would carry privacy and liability risks.

European Competition Commissioner Margrethe Vestager has voiced concerns that tech industry heavyweights might leverage their power to block rivals and that regulators could have to force them to provide key data to competitors to prevent that.

Source: Facebook warns EU regulators seeking data access about privacy, liability risks – Reuters

EU antitrust regulators are investigating Google’s data collection

Competition enforcers on both sides of the Atlantic are now looking into how dominant tech companies use and monetise data.

The Commission has sent out questionnaires as part of a preliminary investigation into Google’s practices relating to Google’s collection and use of data. EU’s focus is on data related to local search services, online advertising, online ad targeting services, login services, web browsers and others.

Source: Exclusive: EU antitrust regulators say they are investigating Google’s data collection – Reuters

Top 10 GDPR Breaches in 2019 Cause €402.6 Million Fines

Enormous fines imposed for data breaches in 2019 prove that regulators have become severe about penalizing companies and organizations that don’t adequately protect consumer information.

The ten most significant GDPR breaches in 2019 have caused €402.6 million fines in total. The three highest data breach penalties in 2019 make nearly 90 percent of this sizeable amount:

  • British Airways was fined a record €204.6 by UK’s ICO;
  • Marriott International was fined a €110.3 million by UK’s ICO;
  • Google inc. was fined a €50 million by french DPA.

Source: Top 10 GDPR Breaches in 2019 Cause €402.6 Million Fines – Virus Solution and Removal

>