The CJEU has decided that the maximum thresholds for GDPR fines should be calculated using the global turnover of the broader corporate group, not solely the infringing entity. The penalties ...

Authorities in the Netherlands have smacked Haga Hospital with a GDPR fine. Authorities in the Netherlands recently levied a €460,000 ($516,000) fine under the General Data Protection Regulation ...

Data protection authorities imposed over €1 billion in fines in 2024, but activists complain that violations of the law far too rarely result in penalties. Data protection authorities in Europe ...

On 27 March 2025, the UK Information Commissioner’s Office (ICO) issued a £3.07 million fine to an IT services provider following a ransomware attack in 2022 that affected the company’s health care ...

Data protection regulators, particularly in Europe, appear to be taking a tough line with large tech firms over data privacy violations. Law firm DLA Piper recorded a total of €1.2bn ($1.26bn) of ...

GDPR is a sweeping data privacy law that impacts any business collecting data on EU citizens. Make sure your business is ...

The UK’s data protection regulator has welcomed a court ruling dismissing an appeal against a historic GDPR fine, arguing that it will provide much-needed clarity for future cases. The Information ...

Microsoft deputy general counsel Julie Brill spoke with European Data Protection Board chairwoman Andrea Jelinek about lessons learned from the GDPR one year in and ...

The French data protection regulator, CNIL, today issued a collective €42 million ($48.9 million) fine to two French telecom ...

Spain’s €1M ($1.1 million) fine on LaLiga premier football league underscores the challenge of balancing privacy rights with public safety as sports leagues increasingly use biometric systems at ...

The European Union has investigated itself and found…actual wrongdoing! For the first time ever, the EU has been found to have violated its own privacy rules established by the General Data Protection ...