CNIL issues 250.000 euros fine over GDPR breach
According to the International Association of Privacy Professionals (IAPP), the French data protection authority, CNIL, has announced a 250,000 euro fine against retailer Spartoo for violations of the EU’s GDPR. An investigation into the handling of customer and employee data has revealed Spartoo violated data minimization principles and retention periods while failing to meet GDPR obligations to ensure data security and inform individuals.
About author
DW Team
The GIP Digital Watch Observatory team, consisting of over 30 digital policy experts from around the world, excels in the fields of research and analysis on digital policy issues. The team is backed by the creative prowess of Creative Lab Diplo and the technical expertise of the Diplo tech team.