GDPR - Information Management Today

WhatsApp fined €225M over GDPR issues

Security Affairs

SEPTEMBER 5, 2021

The instant messaging company violated the actual General Data Protection Regulation (GDPR). “The Data Protection Commission (DPC) has today announced a conclusion to a GDPR investigation it conducted into WhatsApp Ireland Ltd. The Irish agency is also asking the company to bring the data sharing in compliance with the GDPR.

GDPR

GDPR Compliance IT Security

German laptop retailer fined €10.4m under GDPR for video-monitoring employees

Security Affairs

JANUARY 18, 2021

fine under GDPR against the online laptop and electronic goods retailer NBB for video-monitoring employees. million fine under the GDPR against an online laptop and electronic goods retailer NBB’s (notebooksbilliger.de) for video-monitoring employees for at least a couple of years. .” SecurityAffairs – hacking, GDPR).

Retail

Retail GDPR Sales Privacy

Irish Data Protection Commission fined LinkedIn €310M for GDPR infringement

Security Affairs

OCTOBER 25, 2024

The Irish Agency also mandates LinkedIn to revise its data processing to align with GDPR standards. The probe claims that LinkedIn infringed GDPR Article 6 GDPR and Article 5(1)(a), Articles 13(1)(c) and 14(1)(c), and Article 5(1)(a). said DPC Deputy Commissioner Graham Doyle.

GDPR

GDPR Personal data Compliance Privacy

Webinars

How to Achieve High-Accuracy Results When Using LLMs

MORE WEBINARS

Microsoft Sets Aside $425M For Anticipated GDPR Fine

Data Breach Today

JUNE 3, 2023

European authorities have shown increased willingness to use the GDPR to limit targeted advertising.

GDPR

GDPR Privacy IT

Breach Roundup: Swedish Insurer Fined $3M for GDPR Breach

Data Breach Today

SEPTEMBER 7, 2023

Also, Google Fitbit Faces Privacy Complaints From Schrems This week, the Swedish DPA fined an insurer $3 million for violating GDPR, a DDoS attack disrupted a German financial agency website, Google Fitbit faced privacy complaints from Schrems, Ragnar Locker published hacked hospital data, and Seville, Spain dealt with the aftermath of a ransomware (..)

Insurance

Insurance GDPR Privacy Ransomware

Cisco Studies Global Impact of GDPR

Data Breach Today

JANUARY 24, 2019

Cisco is out with findings from its 2019 Data Privacy Benchmark Study, which shows the impact of GDPR compliance as well as how customers are asking more questions about how their data is secured. Cisco Chief Privacy Officer Michelle Dennedy analyzes the survey.

GDPR

GDPR Data Privacy Privacy Compliance

Google Will Appeal Latest GDPR Fine

Data Breach Today

MARCH 12, 2020

Sweden's Privacy Watchdog Hits Company With $8 Million Penalty Google will appeal the latest GDPR fine levied against the company. The Swedish Data Protection Authority fined the company nearly $8 million for failure to remove search results related to "right-to-be-forgotten" requests.

GDPR

GDPR Privacy

A critical flaw in GDPR compliance plugin for WordPress exploited in the wild

Security Affairs

NOVEMBER 12, 2018

A critical security vulnerability affects a GDPR compliance plugin for WordPress has been already exploited in the wild to take control of vulnerable websites. Users warn of cyber attacks exploiting a critical security vulnerability in the WordPress GDPR Compliance plugin for WordPress to take over of websites using it.

GDPR

GDPR Compliance Phishing Access

Chat app Knuddels fined €20k under GDPR regulation

Security Affairs

NOVEMBER 24, 2018

The chat platform violated GDPR regulation by storing passwords in clear text and for this reason, the regulator imposed its first penalty under the privacy regulation. Securi ty Affairs – GDPR, data breach). The post Chat app Knuddels fined €20k under GDPR regulation appeared first on Security Affairs. Pierluigi Paganini.

GDPR

GDPR Passwords Data breaches Personal data

Spotify Fined 5 Million Euros for GDPR Violations

Data Breach Today

JUNE 13, 2023

Spotify in an emailed statement said the investigation revealed that "only minor areas of our process" were at odds with the GDPR.

GDPR

GDPR Privacy IT

The Irish DPC fined WhatsApp €5.5M for violating GDPR

Security Affairs

JANUARY 21, 2023

by the Irish Data Protection Commission (DPC) for violating the General Data Protection Regulation (GDPR). million (for breaches of the GDPR relating to its service).” million (for breaches of the GDPR relating to its service).” for violating GDPR appeared first on Security Affairs.

GDPR

GDPR Metadata Encryption Communications

Under GDPR, UK Data Breach Reports Quadruple

Data Breach Today

MAY 29, 2019

After Privacy Law Went Into Full Effect, Data Security Complaints Doubled One year after Europe's tough new GDPR privacy law went into full effect last May, authorities in Britain have seen the number of annual data breach notifications more than quadruple. Meanwhile, the number of data protection complaints filed by Europeans has doubled.

Data breaches

Data breaches GDPR Privacy Security

Booking.Com's GDPR Fine Should Serve as 'Wake-Up Call'

Data Breach Today

APRIL 2, 2021

Dutch Authorities Found Company Waited Over 20 Days to Issue Breach Notification The 475,000 euro fine levied against Booking.com by Dutch privacy authorities should serve as a "wake-up call" for other companies when it comes to GDPR, some experts say.

GDPR

GDPR Privacy IT

Facebook Submits GDPR Breach Notification to Irish Watchdog

Data Breach Today

OCTOBER 1, 2018

Report Into 50 Million Breached Accounts Is Incomplete, Privacy Watchdog Warns To comply with GDPR, Facebook has notified Ireland's data privacy watchdog about the massive breach it has suffered, resulting in 50 million accounts being exposed.

GDPR

GDPR Data Privacy Privacy IT

Italy’s data protection watchdog fined OpenAI €15 million over ChatGPT’s data management violations

Security Affairs

DECEMBER 23, 2024

A communication campaign will inform users and non-users on how to oppose the use of their personal data for AI training, ensuring they can exercise their GDPR rights. OpenAI claims the fine is disproportionate and announced it will appeal.

Artificial Intelligence

Artificial Intelligence Personal data Data collection Privacy

British Airways GDPR Lawsuit: The Potential Impact

Data Breach Today

JANUARY 19, 2021

A Substantial Settlement Could Build Data Security Momentum British Airways could face a substantial compensation payout as a result of an ongoing group lawsuit over its 2018 data breach, the first of its kind under GDPR.

GDPR

GDPR Insurance Data breaches Security

Marriott Faces $125 Million GDPR Fine Over Mega-Breach

Data Breach Today

JULY 9, 2019

Breach Persisted 4 Years - and Through Acquisition - Before Being Discovered Britain's privacy watchdog says it plans to fine hotel giant Marriott $125 million under GDPR for security failures tied to a 2014 breach of the guest reservation database for Starwood, which Marriott acquired in 2016.

GDPR

GDPR Privacy Security IT

Marriott Hit With $24 Million GDPR Privacy Fine Over Breach

Data Breach Today

NOVEMBER 2, 2020

Privacy Regulator in UK Cautions Organizations to Conduct Thorough Due Diligence Hotel giant Marriott has been hit with the second largest privacy fine in British history, after it failed to contain a massive, long-running data breach. But the final fine of $23.8 million was just 20% of the penalty initially proposed by the U.K.'s

Privacy

Privacy GDPR Data breaches IT

Dear BA and Marriott: Your GDPR Fines Are Important to Us

Data Breach Today

JULY 10, 2019

Privacy Regulator's Clear Security Message: Act Now to Avoid 'Disappointment' The data protection gloves have finally come off in Europe after GDPR enforcement began last May - the U.K.'s s privacy watchdog has proposed large post-breach sanctions against British Airways and Marriott.

GDPR

GDPR Personal data Privacy Security

Tattletale Ransomware Gangs Threaten to Reveal GDPR Breaches

Data Breach Today

SEPTEMBER 7, 2023

Repeat Shakedown Tactic: Victims Told to Pay Up or Else They'll Pay Massive Fines Ransomware groups do whatever they can to pressure a victim into paying.

Ransomware

Ransomware GDPR

How GDPR Is Failing

WIRED Threat Level

MAY 23, 2022

The world-leading data law changed how companies work. But four years on, there’s a lag on cleaning up Big Tech.

GDPR

GDPR Privacy Security

GDPR Compliance Used as Phishing Lure

Data Breach Today

SEPTEMBER 25, 2020

Campaign Designed to Steal Credentials A recently uncovered phishing campaign used the European Union's General Data Protection Regulation as a lure to steal login credentials. The campaign enticed victims with subject lines indicating their email security system was not in compliance with the law, according to Area 1 Security.

Compliance

Compliance Phishing GDPR Security

British Lawmakers Push Ahead With Modifying UK GDPR

Data Breach Today

DECEMBER 1, 2023

Data Protection and Digital Information Bill Heads to the House of Lords British Conservative lawmakers are pushing ahead with legislation modifying the U.K. codification of European privacy law despite objections from privacy advocates and concerns about the legislation's impact on European trade.

GDPR

GDPR Privacy Government

Irish Authorities Levy GDPR Fine in Centric Health Breach

Data Breach Today

MARCH 1, 2023

2019 Ransomware Breach Affected 70,000 Patients, Destroyed Records of 2,500 of Them Irish authorities have fined a healthcare organization 460,000 euros - about $490,000 - for a 2019 Calum ransomware breach that compromised sensitive information of 70,000 patients, including the permanent deletion of data for about 2,500 of them.

GDPR

GDPR Ransomware

Europe Will 'Streamline' Cross-Border GDPR Enforcement

Data Breach Today

FEBRUARY 23, 2023

Nationally driven enforcement of the regulation has emerged as a sore point for some during the GDPR's first half decade.

GDPR

GDPR Government

UK Reintroduces Bill Proposing Modifying Country's GDPR

Data Breach Today

MARCH 8, 2023

GDPR could lead to more surveillance. Civil Society and Tech Firms Warn Aginst Modifying the European Privacy Law The British government is proposing modifications to the European privacy law adopted as British law before leaving European Union. Civil society groups warn changes to the U.K.

GDPR

GDPR Privacy Government

UK Parliament Hears Assurances on GDPR Adequacy

Data Breach Today

MAY 10, 2023

GDPR retains all the rights of the European citizens," said John Edwards, U.K. Tory Government Presses Ahead with Data Protection and Digital Information Bill Members of the U.K. Parliament considering modifications to national privacy law heard assurances Wednesday that the European Union will go along with them.

GDPR

GDPR Privacy Government

GDPR: EU Sees More Data Breach Reports, Privacy Complaints

Data Breach Today

DECEMBER 19, 2018

Ireland, France, Germany and UK Report Increases Since Privacy Law Took Effect The number of data breach reports filed since the EU General Data Protection Regulation went into effect has hit nearly 3,500 in Ireland, over 4,600 in Germany, 6,000 in France and 8,000 in the U.K.

Data breaches

Data breaches Privacy GDPR

600+ installs of WordPress Cookie Consent Plugin vulnerable to hack. Fix it now!

Security Affairs

FEBRUARY 13, 2020

Developers of the popular WordPress GDPR Cookie Consent plugin have addressed a critical bug that could potentially impact 700K users. The GDPR Cookie Consent plugin assists users in making your website GDPR compliant. The GDPR Cookie Consent plugin assists users in making your website GDPR compliant. Fix it now!

GDPR

GDPR IT Authentication Access

Marriott Hit With Class-Action Data Breach Lawsuit

Data Breach Today

AUGUST 19, 2020

UK Claim Seeks Damages Under GDPR Over Long-Running Starwood Reservation System Hack Marriott faces a new class-action lawsuit, filed in Britain, over the breach of its Starwood guest reservation system.

Data breaches

Data breaches GDPR IT

Discord Fined by French CNIL for GDPR Violations

Data Breach Today

NOVEMBER 17, 2022

Video Streamer Pays 800,000 Euros to Settle Probe of Privacy and Security Practices The French data protection authority fined Discord 800,000 euros for privacy and security practices that violate the General Data Protection Regulation.

GDPR

GDPR Personal data Privacy Security

From Risk Assessment to Action: Improving Your DLP Response

Security Affairs

OCTOBER 25, 2024

By doing so, DLP risk assessments ensure compliance with ever-more stringent data protection regulations like GDPR , HIPAA , and PCI DSS.

Risk

Risk Cybersecurity Cloud Compliance

Bad Cookies: Privacy Regulator Fines Supermarket Giant

Data Breach Today

DECEMBER 4, 2020

Million Fine for French Supermarket Giant Carrefour for Alleged GDPR Violations France's privacy regulator has hit retail giant Carrefour with a $3.7 million fine for violating privacy laws, including GDPR.

Privacy

Privacy Retail GDPR IT

UK ICO Approves the First UK GDPR Certification Scheme Criteria

Hunton Privacy

AUGUST 27, 2021

On August 19, 2021, the UK Information Commissioner’s Office (“ICO”) approved the criteria for three certification schemes, as required under Article 42(5) of the UK General Data Protection Regulation (“UK GDPR”). Certification schemes are one method for organizations to demonstrate compliance with the UK GDPR.

GDPR

GDPR Compliance Personal data Privacy

GDPR Two Years On: Compliance Lessons Learned

Data Breach Today

JULY 29, 2020

Attorneys Discuss Gaps That Still Need To Be Addressed Now that it's been two years since enforcement of the European Union's General Data Protection Regulation began, three attorneys - Kelsey Finch, Jonathan Armstrong and David Dumont - reflect on the lessons learned so far and the compliance gaps that still need to be addressed.

Compliance

Compliance GDPR IT

Facial Recognition Use Triggers GDPR Fine

Data Breach Today

AUGUST 28, 2019

Sweden Issues Penalty After School Tests the Technology Sweden's Data Protection Authority has issued its first fine for violations of the European Union's General Data Protection regulation after a school launched a facial recognition pilot program to track students' attendance without proper consent.

GDPR

GDPR IT

LinkedIn Fined 310 Million Euros For Privacy Violations

Data Breach Today

OCTOBER 24, 2024

Irish Data Protection Commission Cites Social Platform for GDPR Violations The Irish Data Protection Commission imposed a 310 million euro fine on LinkedIn for violating a European privacy law stemming from the company's use of customer data. It ordered the social media platform to bring its data processing under compliance.

Privacy

Privacy GDPR Compliance IT

Meta Fined by Irish Privacy Regulator for GDPR Violations

Data Breach Today

NOVEMBER 28, 2022

Fine Tied to Data Scrapping Incident Revealed in 2021 Facebook will pay a 265 million euro fine to the Irish data protection authority to resolve a 2021 incident when the scrapped data of 533 million users appeared online. The data contained names, phone numbers and birth dates. Facebook says it takes active measures against data scrapping.

GDPR

GDPR Privacy IT

Liechtenstein's Data Regulator Releases AI Chatbot Guidance

Data Breach Today

NOVEMBER 6, 2023

Guidance Cites GDPR Transparency and Consent Clauses The data protection regulator of European country Liechtenstein rolled out new data processing guidance for large language model-powered chatbots such as ChatGPT. The primary legal basis for compliance will be the consent and transparency clauses of the GDPR, the agency said.

GDPR

GDPR Compliance

French Ad Tech Firm Fined 40M Euros for GDPR Violations

Data Breach Today

JUNE 22, 2023

French Regulator Fines Criteo for Website Cookie Tracking Tools The top French privacy regulator has imposed a fine of 40 million euros against a Parisian advertising technology company for its use of website tracking cookies and failure to process users' personal data in compliance with privacy laws under the General Data Protection Regulation.

GDPR

GDPR Personal data Privacy Compliance

Irish DPC Sues X over Harvesting Data for Grok AI Bot

Data Breach Today

AUGUST 7, 2024

Regulators told Irish High Court that X, Formerly Twitter, Violated the GDPR The Irish data regulator sued social media platform X, accusing the service of wrongfully harvesting users' personal data for its artificial intelligence model Grok. During a hearing on Tuesday, regulators told the High Court of Ireland that X violated the GDPR.

Artificial Intelligence

Artificial Intelligence GDPR Personal data IT

New EU FIDA Proposal: How Does This Affect GDPR?

Data Matters

SEPTEMBER 26, 2023

The post New EU FIDA Proposal: How Does This Affect GDPR? FIDA will create a legislative framework that aims to "bring payments and the wider financial sector into the digital age" by facilitating the sharing of and access to customer financial data (whether of businesses or consumers). appeared first on Data Matters Privacy Blog.

GDPR

GDPR Privacy Access

Patient Record Snooping Incident Leads to GDPR Fine

Data Breach Today

JULY 19, 2019

Hospital in The Netherlands Slapped With Fine; May Face Additional Penalties Authorities in the Netherlands recently levied a $516,000 fine under the General Data Protection Regulation against a hospital in the Hague in connection with a data breach involving "dozens" of staffers who snooped on the electronic medical records of a celebrity.

GDPR

GDPR Data breaches

California's New Privacy Law: It's Almost GDPR in the US

Data Breach Today

JULY 2, 2018

But Tech Giants are Taking Aim at the Law, Which Can Be Amended Until 2020 California's legislature has quickly introduced and passed new privacy legislation, making the state's laws the strongest in the U.S. The new law gives consumers a raft of new rights, and aims to bring more transparency to the murky trade in people's personal information.

Privacy

Privacy GDPR IT

WhatsApp fined €225M over GDPR issues

German laptop retailer fined €10.4m under GDPR for video-monitoring employees

Webinars

Trending Sources

Irish Data Protection Commission fined LinkedIn €310M for GDPR infringement

Webinars

Microsoft Sets Aside $425M For Anticipated GDPR Fine

Breach Roundup: Swedish Insurer Fined $3M for GDPR Breach

Cisco Studies Global Impact of GDPR

Google Will Appeal Latest GDPR Fine

A critical flaw in GDPR compliance plugin for WordPress exploited in the wild

Chat app Knuddels fined €20k under GDPR regulation

Spotify Fined 5 Million Euros for GDPR Violations

The Irish DPC fined WhatsApp €5.5M for violating GDPR

Under GDPR, UK Data Breach Reports Quadruple

Booking.Com's GDPR Fine Should Serve as 'Wake-Up Call'

Facebook Submits GDPR Breach Notification to Irish Watchdog

Italy’s data protection watchdog fined OpenAI €15 million over ChatGPT’s data management violations

British Airways GDPR Lawsuit: The Potential Impact

Marriott Faces $125 Million GDPR Fine Over Mega-Breach

Marriott Hit With $24 Million GDPR Privacy Fine Over Breach

Dear BA and Marriott: Your GDPR Fines Are Important to Us

Tattletale Ransomware Gangs Threaten to Reveal GDPR Breaches

How GDPR Is Failing

GDPR Compliance Used as Phishing Lure

British Lawmakers Push Ahead With Modifying UK GDPR

Irish Authorities Levy GDPR Fine in Centric Health Breach

Europe Will 'Streamline' Cross-Border GDPR Enforcement

UK Reintroduces Bill Proposing Modifying Country's GDPR

UK Parliament Hears Assurances on GDPR Adequacy

GDPR: EU Sees More Data Breach Reports, Privacy Complaints

600+ installs of WordPress Cookie Consent Plugin vulnerable to hack. Fix it now!

Marriott Hit With Class-Action Data Breach Lawsuit

Discord Fined by French CNIL for GDPR Violations

From Risk Assessment to Action: Improving Your DLP Response

Bad Cookies: Privacy Regulator Fines Supermarket Giant

UK ICO Approves the First UK GDPR Certification Scheme Criteria

GDPR Two Years On: Compliance Lessons Learned

Facial Recognition Use Triggers GDPR Fine

LinkedIn Fined 310 Million Euros For Privacy Violations

Meta Fined by Irish Privacy Regulator for GDPR Violations

Liechtenstein's Data Regulator Releases AI Chatbot Guidance

French Ad Tech Firm Fined 40M Euros for GDPR Violations

Irish DPC Sues X over Harvesting Data for Grok AI Bot

New EU FIDA Proposal: How Does This Affect GDPR?

Patient Record Snooping Incident Leads to GDPR Fine

California's New Privacy Law: It's Almost GDPR in the US

Stay Connected