GDPR, Privacy and Retail - Information Management Today

Clothing Retailer H&M Told to Wear $41 Million GDPR Fine

Data Breach Today

OCTOBER 5, 2020

Employee Surveillance Violations Trigger Germany's Biggest Privacy Fine to Date Privacy regulators in Germany have slammed clothing retailer H&M with a $41 million fine for collecting and retaining private employee data in violation of the EU's General Data Protection Regulation.

Retail

Retail GDPR Privacy

Bad Cookies: Privacy Regulator Fines Supermarket Giant

Data Breach Today

DECEMBER 4, 2020

Million Fine for French Supermarket Giant Carrefour for Alleged GDPR Violations France's privacy regulator has hit retail giant Carrefour with a $3.7 million fine for violating privacy laws, including GDPR.

Privacy

Privacy Retail GDPR IT

The bright side of data privacy compliance: 5 value-driven opportunities for retailers

Thales Cloud Protection & Licensing

AUGUST 30, 2023

The bright side of data privacy compliance: 5 value-driven opportunities for retailers madhav Thu, 08/31/2023 - 05:20 Failing to keep up with data privacy legislations, such as General Data Protection Regulation (GDPR) or the California Consumer Privacy Act (CCPA) can harm a brand’s bottom-line and public reputation.

Retail

Retail Data Privacy Compliance Privacy

German laptop retailer fined €10.4m under GDPR for video-monitoring employees

Security Affairs

JANUARY 18, 2021

fine under GDPR against the online laptop and electronic goods retailer NBB for video-monitoring employees. million fine under the GDPR against an online laptop and electronic goods retailer NBB’s (notebooksbilliger.de) for video-monitoring employees for at least a couple of years. .” Pierluigi Paganini.

Retail

Retail GDPR Sales Privacy

Retail Privacy Network

Data Matters

FEBRUARY 7, 2020

You are invited to join privacy professionals in the retail sector for topical conversation, learning and networking at the first Retail Privacy Network meeting. This interactive meeting will include hot topics in UK/EU data privacy and cybersecurity with practical case studies on retail industry issues.

Retail

Retail Privacy Data Privacy GDPR

Amazon Hit With $885 Million GDPR Fine

Data Breach Today

JULY 30, 2021

Online Retailer Plans to Appeal the Decision Handed Down by EU Regulators Amazon reports that it's been fined 746 million euros ($885 million) under the European Union's General Data Protection Regulation for violating privacy rights in its advertising program. The company says it plans to appeal.

GDPR

GDPR Retail Privacy IT

Data privacy examples

IBM Big Data Hub

APRIL 24, 2024

An online retailer always gets users’ explicit consent before sharing customer data with its partners. These are just some examples of how organizations support data privacy , the principle that people should have control of their personal data, including who can see it, who can collect it, and how it can be used.

Data Privacy

Data Privacy Privacy GDPR Personal data

How to implement the General Data Protection Regulation (GDPR)

IBM Big Data Hub

FEBRUARY 23, 2024

The General Data Protection Regulation (GDPR), the European Union’s landmark data privacy law, took effect in 2018. Even the world’s biggest businesses are not free from GDPR woes. Many businesses find it hard to implement GDPR requirements because the law is not only complex but also leaves a lot up to discretion.

GDPR

GDPR Compliance Personal data Privacy

GDPR. Forget bitcoin, data is the new currency of retail

OpenText Information Management

APRIL 4, 2018

On May 25, 2018, the new EU data privacy regulation, known as the General Data Protection Regulation (GDPR), comes into force. For … The post GDPR. Forget bitcoin, data is the new currency of retail appeared first on OpenText Blogs. Shortly after that the sky falls in and the world ends.

Retail

Retail GDPR Data Privacy Privacy

GDPR – the facts and what it means for the retail sector

IT Governance

JUNE 25, 2018

We all know by now that, on 25 May 2018, the General Data Protection Regulation (GDPR) came into effect. The GDPR is not an IT issue. Despite the benefits of good data management, it was widely acknowledged that many organisations would not be GDPR-compliant on 25 May. GDPR c ompliance is not a choice .

Retail

Retail GDPR IT Compliance

Respecting Privacy and Data Protection: World Consumer Rights Day

Thales Cloud Protection & Licensing

MARCH 14, 2023

Respecting Privacy and Data Protection: World Consumer Rights Day divya Wed, 03/15/2023 - 05:44 For the last four decades, March 15th has marked World Consumer Rights Day - a campaign to raise global awareness about the needs and rights of consumers. It’s not only consumers and retailers taking notice of this trend, of course.

Privacy

Privacy Retail Customer Experience B2C

Does your use of CCTV comply with the GDPR?

IT Governance

OCTOBER 3, 2019

You might be surprised to learn that CCTV footage is subject to the GDPR (General Data Protection Regulation). Let’s take a look at the steps you should follow to ensure your video surveillance methods are GDPR-compliant. Let’s take a look at the steps you should follow to ensure your video surveillance methods are GDPR-compliant.

GDPR

GDPR Privacy Retail Personal data

CNIL Adopts Its First Sanction as Lead Supervisory Authority, Fining French Online Shoe Retailer

Hunton Privacy

AUGUST 11, 2020

On August 5, 2020, the French Data Protection Authority (the “CNIL”) announced that it has levied a fine of €250,000 on French online shoe retailer, Spartoo, for various infringements of the EU General Data Protection Regulation (“GDPR”). As part of its activities, the company operates a website that is accessible in 13 EU countries.

Retail

Retail GDPR IT Personal data

DPIAs for retail and hospitality

IT Governance

MARCH 26, 2019

Although DPIAs (data protection impact assessments) are not a new concept, the GDPR (General Data Protection Regulation) now mandates them under certain circumstances. It’s relevant for everyone, including retail and hospitality. Common activities for retail and hospitality requiring DPIAs.

Retail

Retail Risk GDPR Government

Forging a framework for central bank digital currencies and tokenization of other financial assets

IBM Big Data Hub

FEBRUARY 1, 2024

More prominently, central bank digital currencies (CBDCs) have come to offer digital forms of central bank money, while tokenized deposits tokenize the lifecycle of commercial bank money in both the retail and wholesale context. Payment transaction privacy is also important. What are central bank digital currencies?

Retail

Retail Privacy Compliance Government

Self-Sovereign Identities, The Next Step in Privacy-First User Experience

Thales Cloud Protection & Licensing

MARCH 20, 2023

Self-Sovereign Identities, The Next Step in Privacy-First User Experience divya Tue, 03/21/2023 - 06:10 There is a growing momentum around Self-Sovereign Identities (SSI) with real value to be captured by individuals, countries, and businesses. When privacy is at stake, SSI puts individuals back in control of their personal data.

Privacy

Privacy Blockchain Customer Experience Access

CCTV and the GDPR – an overview for small businesses

IT Governance

JULY 25, 2018

As of 25 May 2018, organisations that use CCTV to capture images of individuals are processing personal data as defined by the GDPR (General Data Protection Regulation) and must comply with the Regulation’s requirements. You can find more information about GDPR compliance on our website >> Data processing principles (Article 5).

GDPR

GDPR Personal data Privacy Access

FIRST SANCTION OF AN ONLINE SHOES COMPANY BY CNIL ACTING AS A LEAD AUTHORITY FOR SEVERAL INFRINGEMENTS TO GDPR REQUIREMENTS

DLA Piper Privacy Matters

AUGUST 12, 2020

On 28 July 2020, the French Supervisory Authority (the “CNIL”) sanctioned the online shoes retail company, SPARTOO SAS, by a €250,000 fine and an injunction to comply with GDPR within 3 months under penalty for various non-compliances with the GDPR of the personal data processing related to clients, prospects and employees [1].

GDPR

GDPR Personal data Compliance Passwords

The Week in Cyber Security and Data Privacy: 1 – 7 January 2024

IT Governance

JANUARY 9, 2024

Source (New) Software Luxembourg Yes 3,600,000 National Automobile Dealers Association Source (New) Retail USA Yes 1,065,000 Consórcio Canopus Source (New) Professional services Brazil Yes 1,400,000 The Teaching Company (Wondrium by The Great Courses) Source (New) Education USA Yes 1.3 TB Gräbener Maschinentechnik GmbH & Co.

Data Privacy

Data Privacy Privacy Manufacturing Data breaches

Did H&M spy on its German employees? Privacy watchdog opens an investigation

Security Affairs

JANUARY 27, 2020

A German p rivacy watchdog is investigating into clothing retailer H&M because it was allegedly spying on its customer service representatives in Germany. Let’s remind that according to EU GDPR law, H&M could face a fine of four percent of global annual sales. SecurityAffairs – H&M, privacy).

Privacy

Privacy IT Retail Sales

Germany: New 35 million fine for breaching employee privacy

Data Protection Report

OCTOBER 5, 2020

million under the GDPR against the German subsidiary of the fashion retailer H&M. On 1 October 2020, the State Commissioner for Data Protection and Freedom of Information (Landesbeauftragte für Datenschutz und Informationsfreiheit) of Hamburg (the DPA) imposed a fine of EUR 35.3

Privacy

Privacy Retail Data collection GDPR

Consumer concerns over GDPR should set alarm bells ringing for businesses

Thales Cloud Protection & Licensing

NOVEMBER 16, 2017

Today, putting the letters ‘GDPR’ into Google will generate over 420,000 news articles, some detailing the expected impact of the regulation, and others casting doubt on businesses and their readiness. and Germany to get to grips with what they know about GDPR, and more importantly, what they don’t. A lack of trust.

GDPR

GDPR Retail Data breaches Financial Services

International Data Protection Day 2022

DLA Piper Privacy Matters

JANUARY 28, 2022

In this eleventh edition of the guide, we now provide an overview of privacy and data protection laws in over 100 different jurisdictions. Looking back on 2021, the privacy and data protection landscape continues to evolve at pace. Looking back on 2021, the privacy and data protection landscape continues to evolve at pace.

GDPR

GDPR Privacy Data breaches Personal data

CNIL Fines Two Companies of the Carrefour Group €3.05 Million for GDPR and Cookie Violations

Hunton Privacy

DECEMBER 1, 2020

million on Carrefour France and a fine of €800,000 on Carrefour Banque for various violations of the EU General Data Protection Regulation (“GDPR”) and Article 82 of the French Data Protection Act governing the use of cookies. Carrefour France and Carrefour Banque are both affiliates of the French retail group, the Carrefour Group.

GDPR

GDPR Personal data Data collection Marketing

CIPL Welcomes New Privacy Managers Matthew Starr and Giovanna Carloni

Hunton Privacy

SEPTEMBER 6, 2019

The Centre for Information Policy Leadership (“CIPL”) at Hunton Andrews Kurth LLP is pleased to announce Matthew Starr and Giovanna Carloni have joined CIPL, adding to its expertise in global privacy and data protection policy. Matthew Starr joins CIPL as Global Privacy and Public Policy Manager.

Privacy

Privacy Artificial Intelligence Retail Data Privacy

These 3 GDPR Requirements You Must Support Today are Nothing Compared With What’s Coming

Reltio

AUGUST 16, 2018

On May 25, 2018 GDPR (General Data Protection Regulation) went into effect. The primary objectives of the GDPR are to give control back to their EU citizens and residents over their personal data, to simplify the regulatory environment for international business, and to unify regulations within the European Union.

GDPR

GDPR MDM Compliance Personal data

Don’t let bad data drag you down: A retailer’s guide

Collibra

APRIL 11, 2023

Retail is a dynamic and competitive market. In addition to the traditional brick-and mortar-stores, the retail business today includes online and mobile stores. The right kind of data can drive great innovations in retail. This blog outlines what bad data means and how you can stop it from hurting your retail business.

Retail

Retail Sales Compliance Marketing

Data controller vs data processor: what’s the difference?

IT Governance

AUGUST 19, 2020

The concept of data controllers and data processors has been around for years, but the roles come with clearly defined responsibilities under the GDPR (General Data Protection Regulation). Say, for example, that you are a marketing executive at a retailer who wants to conduct a survey on shoppers’ browsing habits. Privacy as a Service.

GDPR

GDPR Personal data Compliance Privacy

In Today’s Privacy Environment, That’s the Way the (Website) Cookie Crumbles: Data Privacy Trends

eDiscovery Daily

FEBRUARY 11, 2019

It’s only been three weeks, but we’ve already talked plenty about the first big GDPR fine of €50 million (or about $56.8 million ) fine to Google for failing to comply with GDPR. As covered in Alston & Bird’s Privacy and Data Security Blog ( Google-Style GDPR Fines for Everyone? Well, you may want to think again.

Privacy

Privacy Data Privacy GDPR Compliance

Security Affairs newsletter Round 403 by Pierluigi Paganini

Security Affairs

JANUARY 22, 2023

Every week the best security articles from Security Affairs free for you in your email box. If you want to also receive for free the newsletter with the international press subscribe here. The Irish DPC fined WhatsApp €5.5M The Irish DPC fined WhatsApp €5.5M

Security

Security Data breaches Retail Ransomware

UK ICO Issues Unprecedented Fine Against Mobile Phone Retailer for Lax Security

Hunton Privacy

JANUARY 12, 2018

On January 8, 2017, the UK Information Commissioner (“ICO”) issued an unprecedented monetary penalty of £400,000 against British mobile phone retailer, The Car Phone Warehouse Limited. This decision sets the tone for companies at the dawn of the entry into force of the GDPR.

Retail

Retail Personal data Security GDPR

The importance of encryption in complying with Australia’s Privacy Amendment Act

Thales Cloud Protection & Licensing

JANUARY 24, 2018

Around the same time, US fashion retailer Forever 21 admitted that hackers had collected customers’ credit card information from its stores’ point of sale terminals over much of 2017, and the information of nearly 1.2 For more information on the Privacy Amendment Act 2017, please visit our dedicated landing page.

Encryption

Encryption Privacy Digital transformation Data Privacy

Subject Access Requests in Scotland: Do you know what data is held about you?

IT Governance

NOVEMBER 12, 2018

The impact of the GDPR (General Data Protection Regulation) in Scotland is greater than most realise. One of the rights amended by the GDPR is the right of access. Other supplementary information (mostly the information provided in the organisation’s privacy notice ). What is a data subject access request (DSAR)?

Access

Access GDPR Personal data Retail

6,009,014 MovieBoxPro Accounts Breached in Another Data Scraping Incident

IT Governance

MAY 7, 2024

Source (New) Construction USA Yes 489 ClearVision Optical Source (New) Retail USA Yes 261 Symphony Financial, LLC. Three new GDPR fines The ICO issued a £7,500 fine under the UK GDPR to Central Young Men’s Christian Association for failing to use Bcc , thereby revealing HIV status.

Data breaches

Data breaches Education Manufacturing Retail

Keeping Up with New Data Protection Regulations

erwin

APRIL 11, 2019

Keeping up with new data protection regulations can be difficult, and the latest – the General Data Protection Regulation (GDPR) – isn’t the only new data protection regulation organizations should be aware of. For example, many retailers have robust, data-driven e-commerce operations that are international.

GDPR

GDPR e-Discovery Compliance Metadata

How FIDO 2 authentication can help achieve regulatory compliance

Thales Cloud Protection & Licensing

JUNE 24, 2021

Businesses are governed by an increasingly complex network of regulations, jurisdictions, and standards which dictate security and privacy requirements. The retail sector, especially, is a lucrative target for credential stuffing attacks , resulting in billions lost every year. Compliance with GDPR and CCPA.

Authentication

Authentication Compliance GDPR Personal data

CNIL Fines Apple 8 Million Euros Over Personalized Ads

Hunton Privacy

JANUARY 6, 2023

The CNIL asserted that it drew its authority to investigate Apple’s targeted advertising practices under the e-Privacy Directive, which is transposed into national law by each EU Member State ( i.e. , in Article 82 of the French Data Protection Act). The CNIL’s Jurisdiction.

Retail

Retail GDPR Data collection Compliance

6 things I love about working at Collibra after 6 years in sales engineering

Collibra

APRIL 4, 2023

Regulations like GDPR and innovations in AI and machine learning would soon change all of that. One example of how I was able to do this at Collibra is when the General Data Protection Regulation (GDPR) was published, in 2016 and later implemented EU wide, in May 2018. Tudor Borlea is a Senior Manager, Sales Engineering at Collibra.

Sales

Sales GDPR Marketing Government

Shopping safely over Black Friday and Cyber Monday

IT Governance

NOVEMBER 14, 2018

Black Friday and Cyber Monday are almost upon us, kickstarting what retailers hope will be a successful trading period. However, retailers offering both a physical and digital presence stand to gain the most, as the omnichannel approach is favoured by 69% of UK-based survey respondents.

Retail

Retail Personal data GDPR Risk

Card Factory allowed customer photos to be exposed publicly

IT Governance

OCTOBER 19, 2018

If these could have been used to identify individuals, this would have constituted a personal data breach under the EU GDPR (General Data Protection Regulation). However, on 15 October it said: The trust and privacy of our customers is of utmost importance to us. Insecure storage. The error took a week to resolve.

Retail

Retail Data breaches Personal data GDPR

California passes major legislation, expanding consumer privacy rights and legal exposure for US and global companies

Data Protection Report

JUNE 29, 2018

On June 28, 2018, California lawmakers enacted the California Consumer Privacy Act of 2018 (the “CCPA”) a sweeping, GDPR-like privacy law which is intended to give California consumers more control over how businesses collect and use their data. Here are our ten takeaways: Covered entities. Right to be forgotten.

Privacy

Privacy GDPR Personal data Risk

California Passes Major Legislation, Expanding Consumer Privacy Rights and Legal Exposure for US and Global Companies

Data Protection Report

JUNE 29, 2018

On June 28, 2018, California lawmakers enacted the California Consumer Privacy Act of 2018 (the “CCPA”) a sweeping, GDPR-like privacy law which is intended to give California consumers more control over how businesses collect and use their data. Here are our ten takeaways: Covered Entities. Right to be Forgotten.

Privacy

Privacy GDPR Personal data Risk

More than half of consumers would consider legal action if their data was compromised during a breach

Thales Cloud Protection & Licensing

NOVEMBER 26, 2018

Six months on from the legal implementation of the General Data Protection Regulation (GDPR), a third of consumers have admitted they still aren’t confident that the companies they interact with comply with the regulation. A quarter (25%) of people in both regions revealed that they could not explain the GDPR in any way. Ready or not.

GDPR

GDPR Data breaches Retail Manufacturing

Getting Customer Communications Right in Times of Coronavirus

HL Chronicle of Data Protection

MARCH 24, 2020

Across the world, large retail stores and small businesses alike are shutting their doors. Privacy and data protection laws everywhere regulate the ability of organisations to communicate with individuals for both service-related and promotional purposes.

Communications

Communications Retail Marketing Privacy

Clothing Retailer H&M Told to Wear $41 Million GDPR Fine

Bad Cookies: Privacy Regulator Fines Supermarket Giant

Trending Sources

The bright side of data privacy compliance: 5 value-driven opportunities for retailers

German laptop retailer fined €10.4m under GDPR for video-monitoring employees

Retail Privacy Network

Amazon Hit With $885 Million GDPR Fine

Data privacy examples

How to implement the General Data Protection Regulation (GDPR)

GDPR. Forget bitcoin, data is the new currency of retail

GDPR – the facts and what it means for the retail sector

Respecting Privacy and Data Protection: World Consumer Rights Day

Does your use of CCTV comply with the GDPR?

CNIL Adopts Its First Sanction as Lead Supervisory Authority, Fining French Online Shoe Retailer

DPIAs for retail and hospitality

Forging a framework for central bank digital currencies and tokenization of other financial assets

Self-Sovereign Identities, The Next Step in Privacy-First User Experience

CCTV and the GDPR – an overview for small businesses

FIRST SANCTION OF AN ONLINE SHOES COMPANY BY CNIL ACTING AS A LEAD AUTHORITY FOR SEVERAL INFRINGEMENTS TO GDPR REQUIREMENTS

The Week in Cyber Security and Data Privacy: 1 – 7 January 2024

Did H&M spy on its German employees? Privacy watchdog opens an investigation

Germany: New 35 million fine for breaching employee privacy

Consumer concerns over GDPR should set alarm bells ringing for businesses

International Data Protection Day 2022

CNIL Fines Two Companies of the Carrefour Group €3.05 Million for GDPR and Cookie Violations

CIPL Welcomes New Privacy Managers Matthew Starr and Giovanna Carloni

These 3 GDPR Requirements You Must Support Today are Nothing Compared With What’s Coming

Don’t let bad data drag you down: A retailer’s guide

Data controller vs data processor: what’s the difference?

In Today’s Privacy Environment, That’s the Way the (Website) Cookie Crumbles: Data Privacy Trends

Security Affairs newsletter Round 403 by Pierluigi Paganini

UK ICO Issues Unprecedented Fine Against Mobile Phone Retailer for Lax Security

The importance of encryption in complying with Australia’s Privacy Amendment Act

Subject Access Requests in Scotland: Do you know what data is held about you?

6,009,014 MovieBoxPro Accounts Breached in Another Data Scraping Incident

Keeping Up with New Data Protection Regulations

How FIDO 2 authentication can help achieve regulatory compliance

CNIL Fines Apple 8 Million Euros Over Personalized Ads

6 things I love about working at Collibra after 6 years in sales engineering

Shopping safely over Black Friday and Cyber Monday

Card Factory allowed customer photos to be exposed publicly

California passes major legislation, expanding consumer privacy rights and legal exposure for US and global companies

California Passes Major Legislation, Expanding Consumer Privacy Rights and Legal Exposure for US and Global Companies

More than half of consumers would consider legal action if their data was compromised during a breach

Getting Customer Communications Right in Times of Coronavirus

Stay Connected