DPAs have levied 190 fines and penalties to date. With 43 enforcement decisions made so far, Spain leads the pack as Europe’s most active regulator, followed by Romania (21) and Germany (18). The UK has imposed the highest total amount of fines — more than €315 million — if both British Airways’ and Marriott’s fines are upheld after appeal. Following are France’s Commission Nationale de l’Informatique et des Libertés, with just over €51 million in fines, and Germany’s DPA, at nearly €25 million.
They’re actually going after people! GDPR is one of the most annoying things about living in Europe.
I’m sure it’s ultimately good – like flossing – but dealing with it everyday is terrible. I’d like to suggest in the next draft that they mandate that it’s all just turned off and that I can dig down into some special settings page if I want t turn tracking on. It’s not like I ever spend the time on the numerable sites I visit each day to select which information I want to share. I just want to get on with my day so I click “Accept All.”
Source: Guess What? GDPR Enforcement Is On Fire!
“Citi cites forecasts that ePrivacy could trigger a 70% reduction in European display ad revenue, and a 33% cut in digital ad budgets, either of which could eviscerate Facebook and Google, at least under their current business model.”
The narrative that these are “tech companies,” at at least that these are the only tech companies, still drives me crazy. For example, are IBM, Microsoft, and Oracle in that bucket. Aside from advertising at Bing, clearly not. So called “tech companies” in this discussion should be called “advertising companies.”
Original source: European privacy regulations predicted to damage digital advertising revenue
Given all the Facebook stuff, I think less balancing towards the side of the robots would probably probably be good:
‘A recent study advocating a U.S. strategy for developing machine intelligence also noted the potential barriers to development that include GDPR and other data privacy efforts. The study released by the Center for Strategic and International Studies warned that the shift to “data localization” will require “balancing legitimate concerns around privacy and consumer protection both in the United States and abroad with the need for an open, flexible data ecosystem that supports innovation and experimentation in AI.”’
Original source: GDPR Seen Slowing AI Innovation
“Large enterprises expect to get an average 246 GDPR enquiries per month, for which they will need to search 43 databases (seven minutes per search). They will spend more than 1,259 hours on this, which equates to nearly 60 hours of searches per working day or 7.5 employees dedicated solely to GDPR enquiries.”
It’s a database management company doing the survey, but still a good wet finger in the wind
Original source: GDPR requests to take thousands of hours a month, says survey
Exciting new audit needs ahead, hoss: “Organisations should review their IT systems and procedures to check they comply with GDPR requirements for privacy by design, ensuring only the minimum amount of personal data necessary is processed. Privacy Impact Assessments (PIAs) should be completed when using new technologies and the data processing is likely to result in a high risk to individuals.”
Original source: GDPR compliance – here are the 14 things you actually need to do