News & Analysis as of

Cybersecurity General Data Protection Regulation (GDPR) Fines

Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk... more +
Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk management, global regulations, data protection, leaks, hacking, cyber insurance, compliance, HIPAA, and every other aspect of cybersecurity of import to corporate readers right now.   less -
Skadden, Arps, Slate, Meagher & Flom LLP

UK GDPR Regulator Fines Data Processor After Ransomware Attack

Skadden, Arps, Slate, Meagher & Flom LLP on

On 27 March 2025, the UK Information Commissioner’s Office (ICO) issued a £3.07 million fine to an IT services provider following a ransomware attack in 2022 that affected the company’s health care business. The ransomware...more

A&O Shearman

English Court reviews the ICOs first GDPR fine (again)

A&O Shearman on

In December 2019, the UK Information Commissioner’s Office (ICO) imposed a fine of £275,000 on Doorstep Dispensaree Limited (DDL) for multiple contraventions of the GDPR. On December 9 2024, five years on and three judgments...more

Reveal

A Corporate Lawyer's Guide To Data Privacy & Data Protection

Reveal on

Privacy laws bring substantial compliance challenges for every organization that collects, processes, stores, and transfers personal data anywhere in the world. For legal departments, compliance professionals and internal...more

Pillsbury Winthrop Shaw Pittman LLP

Navigating the EU’s “NIS 2” Directive: Key Cybersecurity Compliance Points for Businesses Operating in the EU to Consider

Pillsbury Winthrop Shaw Pittman LLP on

The NIS 2 Directive requires a wide range of in-scope organizations to adopt robust cybersecurity measures and incident response plans....more

EDRM - Electronic Discovery Reference Model

Implications of the €310 Million LinkedIn Fine for GDPR Compliance

EDRM - Electronic Discovery Reference Model on

ComplexDiscovery’s Editor’s Note: This recent €310 million fine imposed on LinkedIn by Ireland’s Data Protection Commission (DPC) marks a powerful moment in GDPR enforcement, underlining the regulatory rigor facing global...more

Hogan Lovells

GDPR fines: German court specifies requirements for fine notices in light of ECJ case-law

Hogan Lovells on

Following the European Court of Justice’s (“ECJ”) landmark judgement of 5 December 2023 (case no. C-807/21), the Higher Regional Court of Berlin specified the requirements for GDPR fine notices issued by data protection...more

Orrick, Herrington & Sutcliffe LLP

U.S. messaging service fined €5.5 million for GDPR violations

Orrick, Herrington & Sutcliffe LLP on

On January 19, the Irish Data Protection Commission (DPC) announced the conclusion of an inquiry into the data processing practices of a U.S.-based messaging service’s Ireland operations and fined the messaging service €5.5...more

Faegre Drinker Biddle & Reath LLP

Meta Fines Expose EU Regulators’ Differences and Highlight Fundamental Issues for Data Controllers

Faegre Drinker Biddle & Reath LLP on

Meta Ireland (Meta) has recently been issued with two fines by the Irish Data Protection Commission (DPC) for breaches of the EU General Data Protection Regulation (GDPR) relating to advertisements run on its Facebook and...more

Orrick, Herrington & Sutcliffe LLP

The New European Approach to Calculating Fines for Data Protection Breaches - Will it be More Predictable and Consistent?

Orrick, Herrington & Sutcliffe LLP on

On May 12, 2022, the European Data Protection Board (EDPB) published its long-awaited Guidelines 04/2022 on the calculation of fines under the General Data Protection Regulation (GDPR). After many data protection authorities...more

Bracewell LLP

China's New Data Privacy Law is Sweeping and Serious: Avoid the High Cost of Noncompliance

Bracewell LLP on

Last Friday, China passed the world’s harshest data privacy law, threatening violators with fines of up to 50 million Yuan (or about $7.7 million at the time of publication) or 5% of annual revenue. The Personal Information...more

McGuireWoods LLP

CNPD vs. Amazon, the largest GDPR fine on record – what do we know so far?

McGuireWoods LLP on

Amazon’s financial records have revealed that the Luxembourg data protection supervisory authority, the Commission Nationale pour la Protection des Données (“CNPD”), is fining the retailer’s European arm (Amazon Europe Core...more

Hogan Lovells

Spanish DPA shakes the privacy status quo in Spain – highest fines yet on personal data

Hogan Lovells on

The Spanish Data Protection Agency (“Spanish DPA”) decided to start 2021 the same way it ended 2020: by imposing the highest fines to date (EUR 5,000,000 and 6,000,000) to two large Spanish financial entities. ...more

Hogan Lovells

German court drastically reduces GDPR fine

Hogan Lovells on

Germany has seen a couple of record GDPR fines since the German Data Protection Authorities (DPA) issued their guidance paper on how to measure GDPR fines in October 2019. One of these DPA sanctions was recently subject to...more

Faegre Drinker Biddle & Reath LLP

British Airways Faces Significantly Reduced £20M Fine for GDPR Breach

Faegre Drinker Biddle & Reath LLP on

At £20 million, the fine imposed on British Airways (BA) for its infringement of the General Data Protection Regulation is the biggest fine of its kind in the history of the U.K.’s Information Commissioner’s Office (ICO)....more

Orrick, Herrington & Sutcliffe LLP

ICO Fines: When Is An Appeal Appealing?

Orrick, Herrington & Sutcliffe LLP on

The decision to appeal a regulatory finding is never taken lightly. By the time a regulator has completed its investigation and notified a company of its intention to fine, the company will have invested significant time and...more

Orrick, Herrington & Sutcliffe LLP

A Survival Guide for GDPR Enforcement Actions from a German Perspective – How to Assess and Mitigate Fines for GDPR Violations

Orrick, Herrington & Sutcliffe LLP on

Since the first enforcement actions have been initiated, some with significant fines, many companies may find themselves somewhat at a loss as they may not fully know how to assess the risks involved and how to react should...more

Mitratech Holdings, Inc

The Scariest Data Privacy Breaches of 2019

Mitratech Holdings, Inc on

With it being Halloween, October being National Cybersecurity Awareness Month, and 2019 drawing to an end, let’s take a look at the data privacy breaches giving compliance professionals a fright this year! ...more

Fox Rothschild LLP

French Regulator Fines Auto Insurance Company For Failing To Prevent Web Crawling

Fox Rothschild LLP on

Web crawling and data protection: CNIL has issued a 180,000 EUR fine against a provider of automobile insurance policies for failure to adequately protect data in violation of GDPR, specifically citing disallowing web...more

Fox Rothschild LLP

Dutch Hospital Fined Under GDPR For Medical Records Access Lapses

Fox Rothschild LLP on

The Dutch Data Protection Authority has levied a fine of 460,000 euros on Haga Hospital for insufficient security following an investigation revealing that dozens of hospital staff had unnecessarily checked the medical...more

Bennett Jones LLP

Record Fine Proposed Under GDPR

Bennett Jones LLP on

Any doubt that the world of data protection changed profoundly when the European Union’s General Data Protection Regulation (GDPR) came into effect on May 25, 2018, were solidly dispelled when the United Kingdom’s Information...more

Faegre Drinker Biddle & Reath LLP

Largest GDPR Fine to Date: UK Regulator Issues Notice of Intent to Fine British Airways £183.39M

Faegre Drinker Biddle & Reath LLP on

On 8 July 2019, the U.K. Information Commissioner’s Office (ICO) issued a Notice of Intent to fine British Airways (BA) £183.39 million (approximately $232 million). While the Notice of Intent, as the name suggests, is not a...more

Nelson Mullins Riley & Scarborough LLP

Overview of ICO's Decision to Fine British Airways

Nelson Mullins Riley & Scarborough LLP on

On July 8, 2019, the Information Commission’s Office (ICO) announced its intention to fine British Airways £183.39M ($230M), for infringements of the General Data Protection Regulation (GDPR)....more

Fox Rothschild LLP

British Airways Facing Major Fine Under GDPR For Data Breach

Fox Rothschild LLP on

If you wait for them, the big General Data Protection Regulation (GDPR) fines will come. UK Data protection authority, ICO, announced its intent to fine British Airways 183 million GBP (1.5 percent of annual revenue) for a...more

Skadden, Arps, Slate, Meagher & Flom LLP

Privacy & Cybersecurity Update - April 2019

Skadden, Arps, Slate, Meagher & Flom LLP on

In this month's Privacy & Cybersecurity Update, we examine several recent U.K.-related cybersecurity developments and the SEC's risk alert reminding investment advisers and broker-dealers to follow through on implementing...more

K&L Gates LLP

OnRisk: What U.S. Policyholders Should Know About GDPR

K&L Gates LLP on

In this episode of OnRisk, Lucas Tanglen and Jeff Meagher discuss the cyber insurance implications of the European Union’s new privacy regulation—the General Data Protection Regulation or GDPR. The GDPR, which took effect on...more

33 Results
 / 
View per page
Page: of 2
Next »

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide