Enforcement

GDPR roundup: Scandinavian fines, new health data rules and cooperation penalties

GDR’s latest update on European regulatory activity includes fresh investigations, tightening regulation on health data processing, and an investigation referred from Germany to Poland.

15 July 2020

Google offers Fitbit remedies

Google has promised the European Commission that it will not use Fitbit’s user data to strengthen its advertising business, as it tries to convince the authority to clear its $2.1 billion acquisition of the fitness-tracking company.

15 July 2020

Third-largest GDPR fine issued

The Italian data protection authority has continued its pursuit of telecommunications companies, issuing a fine of just under €17 million against telco Wind Tre.

14 July 2020

California AG sends CCPA warning letters to non-compliant firms

The agency charged with enforcing the CCPA has issued letters warning non-compliant businesses to remedy their infractions or face possible enforcement action.

13 July 2020

GDPR prevents US bank data transfer

A Luxembourg court won’t allow a Swiss bank subject to a US international tax investigation to disclose a client’s bank data to US prosecutors.

13 July 2020

Clearview faces joint UK and Australian investigation

The UK and Australian data watchdogs have launched a joint investigation into Clearview AI’s controversial scraping of biometric data – the latest in a string of probes the company has faced.

09 July 2020

South African data law enacted after seven-year delay

Major provisions of South Africa’s 2013 Protection of Personal Information Act (POPIA) are finally being enacted after seven years of delays. What does the arrival of this long anticipated law mean for those on the ground?

08 July 2020

Dutch credit rating agency appeals data access fine

The Dutch data authority has fined a credit rating agency over its failure to make customer information easily accessible – but the agency has already appealed against the penalty.

07 July 2020

Exclusive: Google admits defeat on one-stop-shop

Google has accepted that all European data protection authorities can enforce against it for data activities carried out by its US parent, GDR has learned – backtracking on its previous assertions that only Ireland’s Data Protection Commission can do so.

07 July 2020

Data broker fights Norwegian adtech claims

Data broker Foursquare has sought to distance itself from accusations made in a Norwegian report about the sale of data by mobile app developers – saying it has a legitimate interest to handle personal data shared with it by mobile apps.

07 July 2020

Get unlimited access to all Global Data Review content