September 23, 2020

Volume X, Number 267

September 23, 2020

Subscribe to Latest Legal News and Analysis

September 22, 2020

Subscribe to Latest Legal News and Analysis

September 21, 2020

Subscribe to Latest Legal News and Analysis

CNIL issues $57 million dollar fine under GDPR

Issues of lack of transparency and consent formed the basis of the CNIL’s $57 million dollar fine against Google under the GDPR. CNIL is France’s highest-ranking data-privacy agency. It’s the first large penalty for a U.S. technology company since the GDPR went into effect last May.

In finding that Google violated the GDPR, the CNIL focused on the level of complexity in finding sufficient information (notice) regarding the use of personal data for targeted advertising, the use of pre-checked boxes to obtain user consent and the level of choice available to users. This fine represents (by far) the largest penalty issued under the GDPR to date. DBR on Data will provide more information as it becomes available and will have a follow-up post.

A brief summary in English and CNIL’s decision is available here (in French).

© 2020 Faegre Drinker Biddle & Reath LLP. All Rights Reserved.National Law Review, Volume IX, Number 22


About this Author

Jeremiah Posedel, Privacy & Data Security lawyer, Drinker Biddle

Jeremiah Posedel assists clients in two distinct but overlapping domains: (i) information technology transactions and (ii) information privacy and security. First, Jeremiah advises on and negotiates a wide array of transactions involving the acquisition, development and leveraging of information technology assets, including hardware, software and database licensing, outsourcing and cloud-based services arrangements, and system implementation and support agreements. Second, Jeremiah counsels clients on domestic and international privacy and security...