On Friday 19 June 2020, the Conseil d’Etat validated the 50 million euro sanction imposed by the CNIL on Google LLC for failing to comply with transparency and information obligations and for failing to provide valid consent. This sanction is now one of the highest sanctions imposed under the powers granted to national authorities by the General Regulation on Data Protection (GDPR). It opens up and is thus part of the increasingly firm policy adopted by the CNIL since 2019.
- New sanction on cookies from the Spanish national authority
- British Airways fined for personal data breach
- French Data Protection Authority opposed to the hosting of health data by Microsoft
- Employee personal data: H&M fined 35 million euros
- Facebook and Instagram, a “new deal” for the transfer of personal data to the United States