Enforcement

Data exploitation as an abuse of dominance

Ashurst competition partner Nigel Parr and data protection partner Rhiannon Webster analyse the impact of a recent European Court of Justice ruling on incumbent companies’ data practices.

18 August 2022

Accor fine sextupled after EDPB intervention

France’s regulator has ordered hotel chain Accor to pay a €600,000 fine following the EDPB’s insistence that the initial penalty proposed by Paris was too low, marking the second time the EU body has substantially increased a fine in a cross-border case.

17 August 2022

Google agrees to A$60 million fine

Google has agreed to pay the Australian consumer protection regulator A$60 million (€41.5 million) and overhaul its compliance programme after a court found that it misled users over its location data collection practices.

12 August 2022

Phillips set to leave FTC

Republican Federal Trade Commission member Noah Phillips’ departure may not have a significant impact on the agency’s privacy enforcement agenda.

09 August 2022

Criteo faces €60 million fine

France’s data watchdog has proposed imposing a €60 million fine on adtech player Criteo.

08 August 2022

ICO faces fresh litigation over “inaction”

A businessman has obtained permission to judicially review the UK data regulator’s conduct relating to a major fintech company’s failure to respond to a subject access request.

04 August 2022

Lower Saxony rejects legitimate interest for targeted advertising

The German state of Lower Saxony has fined a bank €900,000 for using customer data for targeted advertising, in what could be the first drawing of regulatory boundaries in the area.

03 August 2022

Embattled Robinhood to pay $30 million cybersecurity fine

The New York State Department of Financial Services (DFS) has fined trading platform Robinhood’s cryptocurrency operation $30 million for failing to implement proper cybersecurity, bank secrecy and anti-money laundering programmes.

03 August 2022

US Bank slapped with multimillion fine for illegal data practices

The United States’ consumer protection agency for the financial sector has issued US Bank with a $37.5 million (€36.7 million) penalty for exploiting its customers’ personal data,  appearing to be the largest fine issued under the Fair Credit Reporting Act.

02 August 2022

ECJ: Lithuanian anti-corruption measure not GDPR compliant

The highest court in the European Union has ruled that the Lithuanian government’s publication of details relating to the private interests of directors that have received public funding was not proportionate under the GDPR.

01 August 2022

Get unlimited access to all Global Data Review content