Enforcement

Google received €50 million in GDPR fines from French regulator CNIL for failing to adequately inform users about their data collection practices, and not giving users enough control over how their information is used. What are the lessons learnt?

ICO had a busy 2018 with the ten largest fines totaling about £5,000,000 and also the first ICO fines levied at the maximum amount for Facebook and Equifax.

Faced with a deluge of complaints regarding violations in terms of general data protection, regulators are expected to levy the first GDPR fines and other sanctions by year end.

As much as Facebook would like to sweep the Cambridge Analytica data scandal under the rug, signs continue to mount that the company is still playing fast and loose with user data. All this raises the question of whether the 2011 FTC settlement that resulted in an 8-count consent decree actually went far enough.

UK's ICO is increasingly active in their efforts to reduce offences in anti-spam regulations and data breaches. In 2017, we witnessed an annual rise in fines of nearly 69 percent, from £2.9 to £4.9 million. A total of 104 companies has been fined a total of £8.7 million for failures since August 2015.

As personal data protection continue to challenge companies it is becoming apparent that the commissions and other structures that police these issues have become impatient with organisations that are not complying with recommendations. For the first time those companies which have suffered a data breach and been found…