Search Privacy Fines
Browse and filter privacy enforcement fines worldwide.
2,028 fines found
Total: $8.1B
| Date | Company | Fine | Regulation | Authority | Country | Type | Summary |
|---|---|---|---|---|---|---|---|
| 2021-07-05 | IT services company | €0 | GDPR | Croatian Data Protection Authority (AZOP) | Croatia | Failure to implement sufficient measures to ensure information security | --Articles: Art. 32 (1) b), (2) GDPR |
| 2020-09-07 | Former mayor of a community | €0 | GDPR | Belgian Data Protection Authority (APD) | Belgium | Failure to comply with data processing principles | --Articles: Art. 5 GDPR, Art. 6 GDPR |
| 1970-01-01 | Unknown | €0 | GDPR | Slovak Data Protection Office | Slovakia | Art. 32 GDPR | The data controller didn’t properly impose the necessary security measures neede...The data controller didn’t properly impose the necessary security measures needed to protect personal data. Articles: Failure to implement sufficient measures to ensure information security |
| 1970-01-01 | Unknown | €0 | GDPR | Slovak Data Protection Office | Slovakia | Non-compliance with lawful basis for data processing | The Data Protection Authority found that the City had published personal data on...The Data Protection Authority found that the City had published personal data on the official city website in violation of the law, and without asking for the consent of the data subjects. The City had claimed that it was doing this attempting to fulfill the Freedom of Information Act’s premises. Articles: Art. 5 (1) a) GDPR, Art. 6 (1) a) GDPR |
| 1970-01-01 | Unknwon | €0 | GDPR | Slovak Data Protection Office | Slovakia | Failure to implement sufficient measures to ensure information security | Improper information security measures in place.Improper information security measures in place. Articles: Art. 5 (1) f) GDPR, Art. 32 GDPR |
| -- | Unknown | €0 | GDPR | Slovak Data Protection Office | Slovakia | <a href="https://www.privacy-regulation.eu/en/32.htm">Art. 32 GDPR</a> | --Articles: Failure to implement sufficient measures to ensure information security |
| 1970-01-01 | Unknown | €0 | GDPR | Data Protection Authority of Saarland | Germany | Non-compliance with lawful basis for data processing | Illegal disclosure of personal data.Illegal disclosure of personal data. Articles: Art. 6 GDPR |
| 2021-09-01 | SpyFone/Support King | $0 | FTC Act Section 5 | FTC | United States | consent | Stalkerware company banned from surveillance business. Harvested private informa...Stalkerware company banned from surveillance business. Harvested private information from phones. |
| 2024-01-18 | InMarket | $0 | FTC Act Section 5 | FTC | United States | data_broker | Location data aggregator settled charges. Required to delete data and get consen...Location data aggregator settled charges. Required to delete data and get consent. |
| 2022-01-01 | Physician | €0 | GDPR | The DPA of Bremen | Germany | Non-compliance with lawful basis for data processing | --Articles: Art. 6 GDPR |
| 2021-01-01 | Job center employee | €0 | GDPR | Data Protection Authority of Berlin | Germany | Failure to comply with data processing principles | --Articles: Art. 5 GDPR, Art. 6 GDPR |
| 2021-01-01 | Private individual | €0 | GDPR | Data Protection Authority of Saxony | Germany | Failure to comply with data processing principles | --Articles: Art. 5 (1) c) GDPR |
| 2021-01-01 | Gym owner | €0 | GDPR | Data Protection Authority of Saxony | Germany | Unknown | --Articles: Unknown |
| -- | Unknwon | €0 | GDPR | Slovak Data Protection Office | Slovakia | Failure to implement sufficient measures to ensure information security | --Articles: Art. 5 (1) f) GDPR, Art. 32 GDPR |
| 2021-01-01 | Restaurant | €0 | GDPR | Data Protection Authority of Hessen | Germany | Failure to implement sufficient measures to ensure information | --Articles: Art. 24 GDPR, Art. 32 GDPR |
| 2022-01-01 | Company | €0 | GDPR | The DPA of Bremen | Germany | Non-compliance with lawful basis for data processing | --Articles: Art. 6 (1) GDPR |
| 2022-01-01 | Company | €0 | GDPR | The DPA of Bremen | Germany | Non-compliance with subjects' rights protection safeguards | --Articles: Art. 12 (3) GDPR |
| 2022-01-01 | Private individual | €0 | GDPR | Data Protection Authority of Hamburg | Germany | Failure to comply with data processing principles | --Articles: Art. 5 GDPR, Art. 6 GDPR |
| 2021-01-01 | Private individual | €0 | GDPR | Data Protection Authority of Saxony | Germany | Non-compliance with lawful basis for data processing | --Articles: Art. 6 GDPR |
| 2022-01-01 | Private individual | €0 | GDPR | The DPA of Bremen | Germany | Non-compliance with lawful basis for data processing | --Articles: Art. 6 (1) GDPR |
| -- | Unknown | €0 | GDPR | Slovak Data Protection Office | Slovakia | Non-compliance with lawful basis for data processing | --Articles: Art. 5 (1) a) GDPR, Art. 6 (1) a) GDPR |
| 2019-10-30 | Deutsche Wohnen SE | €0 | GDPR | Data Protection Authority of Baden-Wuerttemberg | Germany | Failure to comply with data processing principles | --Articles: Art. 5 GDPR, Art. 25 GDPR |
| 2020-03-13 | Bank (unknown) | €0 | GDPR | Croatian Data Protection Authority (AZOP) | Croatia | Information obligation non-compliance | --Articles: Art. 15 (1), (3) GDPR |
| 2021-01-01 | Private individual | €0 | GDPR | Data Protection Authority of Saxony | Germany | Non-compliance with lawful basis for data processing | --Articles: Art. 6 GDPR |
| 2022-01-01 | Physician | €0 | GDPR | The DPA of Bremen | Germany | Non-compliance with subjects' rights protection safeguards | --Articles: Art. 12 (3) GDPR |