Desjardins Group has reached a proposed C$201 million (U.S. $155 million) settlement agreement in a class-action lawsuit following a long-running data breach that ultimately compromised the personal information of nearly 10 million individuals in Canada and abroad.
Data Privacy
Posted inEurope
Grindr fined $7.2M for GDPR consent violations
The Norwegian Data Protection Authority announced a fine of NOK 65 million (U.S. $7.2 million) against gay dating app Grindr for sharing personal data with third parties without users’ consent.
Posted inEthics & Culture
Ten things I’d like to see happen in 2022
ESG and cryptocurrency figure to be key topics in 2022, but we’re also keeping an eye on President Biden’s anti-corruption efforts, details on Amazon’s record GDPR fine, the status of Facebook’s first CCO, and more.
Posted inEurope
Dutch DPA fines government tax authority $3.1M under GDPR
The Dutch Data Protection Authority announced a fine of €2.75 million (U.S. $3.1 million) against the government’s Tax and Customs Administration for data processing violations of the EU’s General Data Protection Regulation.
Posted inAccounting & Auditing, Data Privacy, ESG/Social Responsibility, Ethics & Culture, Europe, Financial Services, Internal Controls, Regulatory Enforcement, Risk Management, Whistleblowers
Top ethics and compliance failures of 2021
Systemic risk management lapses at a financial services firm, allegations of toxic culture at a video game giant, and more of the same baffling behavior from one of the world’s largest tech companies comprise CW’s list of the biggest ethics and compliance fails of 2021.
Posted inEurope
Clearview AI facing $22.6M fine over U.K. privacy violations
The U.K. Information Commissioner’s Office has warned Clearview AI it could face a £17 million (U.S. $22.6 million) fine over its use of people’s data to power its facial recognition software.
Posted inData Privacy
Commerce Department to examine privacy concerns of disadvantaged communities
The Biden administration, through the Commerce Department’s National Telecommunications and Information Administration, intends to broaden the way it addresses privacy concerns for marginalized and disadvantaged communities.
Provided by
Efficient Data Privacy Compliance Using eDiscovery Workflows
Subject rights requests can divert compliance and legal teams from delivering strategic value and safeguarding their organization from other sources of risk. In many organizations, DSAR/SRR processes are underdeveloped and the use of automation nascent, exacerbating time and resource challenges.
Posted inEurope
GDPR ‘the start of a culture of data protection’
Belgian Data Protection Authority head David Stevens and Member of European Parliament Axel Voss discussed ways the General Data Protection Regulation could be improved for the future during a keynote at CW’s virtual Europe event.
Posted inEurope
U.K. Supreme Court decision on Google deals blow to class actions
Legal experts weigh in on the U.K. Supreme Court’s rejection of a claim that sought billions of pounds in damages from Google over alleged illegal tracking of millions of iPhones and what it means for future collective actions.
