(Data Protection News & Services)
On December 7, 2020, the CNIL (the French data protetion authority) pronounced two record sanctions of €100 million against GOOGLE LLC and GOOGLE IRELAND LIMITED (€60 and €40 million respectively), and €35 million against AMAZON EUROPE CORE for non-compliance with
On 23 September 2020, the CNIL published an article reminding employers of the conditions under which they can implement personal data processing for the purpose of fighting the spread of the COVID-19 virus. The CNIL reminds employers and employees/agents of (i)their
By decision of 28 July 2020, the CNIL imposed a fine of €250,000 and an obligation to comply with the GDPR within 3 months of the decision, on SPARTOO, an online shoe retailer operating in 13 European countries. This is
The CNIL has upgraded its PIA tool aimed at carrying out data protection impact assessments (DPIA) or sometimes also called privacy impact assessment (PIA). A DPIA is a risk analysis that controllers must conduct before starting processing personal data in
In a decision of 19 June 2020, the Conseil d’État (i.e. the French Supreme Administrative Court) ruled, as part of a judicial review, that the CNIL could not legally prohibit the use of “cookie walls” in its recommendation on cookies