INTELLIGENT BRANDS // Enterprise Security
POWERED BY
€ 272.5 million in fines imposed by European regulators under GDPR
€
272.5 million ( roughly US $ 332.4 million / £ 245.3 million ) of fines have been imposed for a wide-range of infringements of Europe ’ s tough data protection laws , according to international law firm , DLA Piper . The figure is taken from the law firm ’ s latest annual General Data Protection Regulation ( GDPR ) fines and data breach report of the 27 European Union Member States plus the UK , Norway , Iceland and Liechtenstein .
Italy ’ s regulator tops the rankings for aggregate fines having imposed more than € 69.3 million ( roughly US $ 84.5 million / £ 62.4 million ) since the application of GDPR on May 25 , 2018 . Germany and France came second and third with aggregate fines of € 69.1 million and € 54.4 million respectively .
In aggregate there have been more than 281,000 data breach notifications since the application of GDPR on May 25 , 2018 , with Germany ( 77,747 ), the Netherlands ( 66,527 ) and the UK ( 30,536 ) topping the table for the number of data breaches notified to regulators . France and Italy , countries with populations over 67 million and 62 million people respectively , only recorded 5,389 and 3,460 data breach notifications for the same period , illustrating the cultural differences in approach to breach notification . people . Greece , Italy and Croatia reported the fewest number of breaches per capita since January 28 , 2020 .
The highest GDPR fine to date remains the € 50 million ( roughly US $ 61 million / £ 45 million ) imposed by the French data protection regulator on Google , for alleged infringements of the transparency principle and lack of valid consent .
Commenting on the report , Ross McKean , Chair of DLA Piper ’ s UK Data Protection & Security Group , said : “ Fines and breach notifications continue their double-digit annual growth and European regulators have shown their willingness to use their enforcement powers .
“ They have also adopted some extremely strict interpretations of GDPR , setting the scene for heated legal battles in the years ahead . However , we have also seen regulators show a degree of leniency this year in response to the ongoing pandemic , with several high-profile fines being reduced due to financial hardship . During the coming year , we anticipate the first enforcement actions relating to GDPR ’ s restrictions on transfers of personal data to the US and other ‘ third countries ’ as the aftershocks from the ruling by Europe ’ s highest court in the Schrems II case continue to be felt .” p
THE HIGHEST GDPR FINE TO DATE REMAINS THE € 50 MILLION ( ROUGHLY US $ 61 MILLION / £ 45 MILLION ) IMPOSED BY THE FRENCH DATA PROTECTION REGULATOR ON GOOGLE .
The aggregate daily rate of breach notifications in Europe experienced doubledigit growth for the second year , running with 331 notifications per day since January 28 , 2020 , a 19 % increase compared to 278 breach notifications per day for the previous year . Weighting the results against country populations , Denmark takes pole position this year ahead of the Netherlands with 155.6 and 150 reported breaches per 100,000 people respectively . Ireland is in third place with 127.8 reported breaches per 100,000
70
INTELLIGENTCIO EUROPE www . intelligentcio . com