With the EU General Data Protection Regulation (GDPR) having been applicable for almost two years now, data protection supervisory authorities (DPAs) are entering into full enforcement mode all over Europe, resulting in significantly higher fines compared to the pre-GDPR world. Several multimillion-euro fines have already been issued, such as a €50 million fine against Google in France (for processing personal data without legal grounds and infringement of transparency and information duties), and in Germany, a €14.5 million fine against a real estate company (for operation of a non-compliant archiving system) and a €9.5 million fine against a telecom service provider (for insufficient data access verification). Even rather minor non-compliance may lead to six-figure fines, such as sending out one hospital bill to the wrong patient (€105,000 – Germany).
It is still unclear what requirements many GDPR provisions impose. At the same time, the number of complaints to the authorities is increasing. Thus, even companies that have gone a long way to ensure compliance with data protection risk proceedings being initiated against them.
What should you do when approached by a DPA – cooperate or fight? In this webinar DLA Piper’s data protection and litigation experts will provide you with a realistic overview of the current GDPR enforcement environment and an analysis of how fines are calculated. We will focus on presenting smart strategies on how to deal with DPA proceedings and how to avoid high fines.
When?: 18 February 2020, 15:00-15:55 GMT (= 16:00-16:55 MEZ)
Where?: Register here.