Sanctions

France: First sanction of an online shoes company by CNIL acting as a lead authority for several infringements to GDPR requirements

On 28 July 2020, the French Supervisory Authority (the “CNIL”) sanctioned the online shoes retail company, SPARTOO SAS, by a €250,000 fine and an injunction to comply with GDPR within 3 months under penalty for various non-compliances with the GDPR of the personal data processing related to clients, prospects and employees[1]. I. Factual background and …

France: First sanction of an online shoes company by CNIL acting as a lead authority for several infringements to GDPR requirements Read More »

FRANCE: A new phase in European privacy law enforcement – CNIL fined Google LLC 50 million euros!

By Denise Lebeau-Marianna, Caroline Chancé and Alexandre Balducci   On 21 January 2019, the restricted committee of the French Data Protection Supervisory Authority (CNIL) fined Google LLC 50 million euros for breaching GDPR for lack of transparency, inadequate information and lack of valid consent regarding personalized advertising.  This is the first decision rendered by the CNIL …

FRANCE: A new phase in European privacy law enforcement – CNIL fined Google LLC 50 million euros! Read More »

FRANCE: Website publisher fined for violation of the cookie requirements

The French Council of State affirmed the EUR 25,000 fine imposed by the CNIL on Editions Croque Futur (challenges.fr) for non-compliance with French data protection law, and in particular cookie requirements. The facts go back to 2014-2015 when the French data protection authority (the CNIL) found out that French company Editions, Croque Futur, publisher of …

FRANCE: Website publisher fined for violation of the cookie requirements Read More »

ITALY: Italian authorities send a message with EU’s highest data protection fine as GDPR looms

The Italian Data Protection Authority (Garante per la protezione dei dati personali, “Garante”) has this month imposed fines of more than €11 million on five companies operating in the money transfers sector for unlawful processing of personal data. This is the largest fine ever imposed by a European Data Protection Authority. Sigue Global Service Limited, …

ITALY: Italian authorities send a message with EU’s highest data protection fine as GDPR looms Read More »

EUROPE: New European ePrivacy rules in the making: Internet services, IoT, cookies and more will be significantly impacted

Those who think that the EU General Data Protection Regulation is a lot to contend with are now facing the prospect of a new Regulation replacing the 2002 ePrivacy Directive. A version of the draft Regulation leaked earlier this week indicates a potentially significant impact on any organisation, whether based in the EU or elsewhere, …

EUROPE: New European ePrivacy rules in the making: Internet services, IoT, cookies and more will be significantly impacted Read More »