- Chief Compliance Officer and VP of Legal Affairs, Arrow Electronics
By 
Neil Hodge2024-05-02T14:57:00
The European Union’s General Data Protection Regulation (GDPR) has been in force for nearly six years. Some industries—and some companies—have been more prone to fall foul of the rules than others.
A glimpse at websites like the GDPR Enforcement Tracker show Big Tech firms, which have been subject to numerous complaints and the largest fines, have not yet proven to be the worst serial offenders under the legislation. Meanwhile, telecommunications companies and banks, for example, appear to be routinely penalized for noncompliance.
Some companies have had multiple, sometimes dozens, penalties levied against them for what appear to be the same infractions over several years—often by the same data protection authority (DPA).
Why has GDPR compliance proven to be difficult for these repeat offenders?
THIS IS MEMBERS-ONLY CONTENT. To continue reading, choose one of the options below.
News and analysis for the well-informed compliance or audit exec.
Register for free
Access one free, non-premium article each month.
Complimentary CPE webcasts, resources, and e-Books.
Annual Membership best value
Subscribe now for $365
Our lowest price ($1 per day) for one year.
The “American Privacy Rights Act” has steep hills to climb if it’s ever going to become law, but that’s no reason for businesses to delay their privacy tune-ups.
The Czech Republic’s data protection authority issued a fine of 351 million Czech koruna (U.S. $15 million) against antivirus software vendor Avast for alleged violations of the General Data Protection Regulation.
The implications of a privacy rights case involving a U.K.-based Uber Eats driver underscore a popular belief that companies prioritize protecting the personal information of their customers over the data rights of their employees.
Big Tech firms might need to rethink their plans to charge users for not selling their personal data for behavioral advertising following a decision by Europe’s primary data regulator.
The California Privacy Protection Agency warned businesses to stop asking for excessive information from consumers who have requested to opt out of having their data collected or who are otherwise exercising their privacy rights under the California Consumer Privacy Act.
The U.S. Department of Transportation is looking to thwart the nation’s 10 largest airlines from monetizing passenger data or selling it to third parties.
