Amazon could face $425m fine in Luxembourg for GDPR violations

According to the Wall Street Journal, the Luxembourg’s data protection commission (CNPD) has proposed a fine of more than $425 million against Amazon. This Luxembourg case relates to alleged violations of Europe’s General Data Protection Regulation (GDPR) linked to Amazon’s collection and use of personal data, and is not related to its cloud-computing business. Telecompaper reports that this penalty would become the biggest since the entry into force of the GDPR, and now needs to be agreed by other national data protection authorities (DPA) in the EU.