GDPR fines analysed and explained

Home » GDPR fines

Our data protection experts regularly analyse fines and other sanctions imposed by European data protection authorities for violations of the European General Data Protection Regulation (GDPR). The aim of our analysis is to equip you with the knowledge to avoid GDPR fines, having learned from the mistakes of other companies.

Multiple data protection violations lead to 600,000 Euro fine

Venushon Thadchanamoorthy 25 September 2024

Data subject complaints lead to supervisory authority inspection at Groupe Canal+, which in turn uncovers more GDPR violations resulting in 600,000 Euro fine.

EDPB Guidelines on the calculation of GDPR fines

Olivia Josovic 20 December 2023

GDPR fines are to be imposed in a standardised manner across Europe according to the European Data Protection Board. The new requirements could be quite expensive for some companies.

EUR 5 million fine for intransparent data processing and inadequate disclosure

Vasiliki Paschou 8 September 2023

The music streaming service Spotify did not sufficiently inform its users about the processing of their data. The Swedish supervisory authority has now imposed a GDPR fine.

Record fine imposed on Meta for data transfers to the U.S.

Jure Globocnik 30 May 2023

The Irish supervisory authority imposed the highest GDPR fine to date on the Facebook group, and banned further data transfers to the United States. We explain why the decision is important for all U.S. electronic communications service providers and their European customers.

GDPR fine for NGO using tweets for a study

Klaus Foitzick 14 April 2022

The Belgian DPA issued a fine against an NGO for failing to comply with data protection law when processing publicly available personal data.

CNIL fines Google and Facebook over cookie consent

Klaus Foitzick 2 February 2022

CNIL issued a combined fine of EUR 150 million against two Google subsidiaries and a EUR 60 million fine against Facebook.

EUR 746 million record GDPR fine issued for insufficient consent

Klaus Foitzick 19 October 2021

Amazon has been hit by the highest fine ever imposed under the GDPR. If the company does not change its policies to comply with data protection laws, it could soon have to pay even more.

EUR 225 million fine for violating GDPR transparency obligations

Klaus Foitzick 14 October 2021

The DPC issued a fine of EUR 225 million against WhatsApp for violating its transparency obligations under the GDPR. The decision highlights the importance of ensuring GDPR compliance and provides further important advice for companies.

What are GDPR fines?

The fines that can be imposed by European data protection authorities in terms of Article 83 of the GDPR are flexible and scale up with the size of the company or corporate group potentially subject to the fine.

The GDPR fines are designed to act as a deterrent, making non-compliance a costly mistake for any company or corporate group. Any company or corporate group that is not GDPR compliant, regardless of its size, faces significant liability.

GDPR fines can go up to EUR 20 million, or up to 4 percent of the annual global turnover of a corporate group, whichever is the higher!

Group Data Protection

Data Protection

AI Compliance

Artificial Intelligence

Whistleblower System

Whistleblowing

Latest articles

New standard contractual clauses for GDPR data importers

The German Accessibility Improvement Act (BFSG)

CJEU defines data protection damages in the case of immaterial and hypothetical damage

Special topics

Resources

Our Experts

Law Office

GDPR fines analysed and explained

Multiple data protection violations lead to 600,000 Euro fine

EDPB Guidelines on the calculation of GDPR fines

EUR 5 million fine for intransparent data processing and inadequate disclosure

Record fine imposed on Meta for data transfers to the U.S.

GDPR fine for NGO using tweets for a study

CNIL fines Google and Facebook over cookie consent

EUR 746 million record GDPR fine issued for insufficient consent

EUR 225 million fine for violating GDPR transparency obligations

What are GDPR fines?

Other specials

Rights of the data subject

Employee data protection

Marketing and data protection

International data transfer

Data Compliance

Judgments on the GDPR and national data protection law

Munich

Berlin

Services

Resources

About

Group

Contact us!

+49 (0)89 / 91 92 94 – 900

Secure the knowledge of our experts!