French DPA latest to fine Clearview AI over GDPR violations
By 
Kyle Brasseur2022-10-20T19:13:00
Clearview AI insists it does not have a presence in the European Union and is therefore not subject to the General Data Protection Regulation (GDPR). The bloc’s individual data privacy regulators believe otherwise.
France’s CNIL became the fourth data protection authority (DPA) this year to fine U.S.-based Clearview AI over its controversial facial image aggregation practices. The agency’s penalty against the company of 20 million euros (U.S. $19.6 million) announced Thursday matches the Hellenic and Italian DPA before it, while the U.K. Information Commissioner’s Office’s fine of more than 7.5 million pounds (then-U.S. $9.4 million) in May carried a lighter touch.
The Hellenic and Italian enforcement actions were handed down in July and February, respectively.
Related articles
-
News BriefFrench DPA fines Clearview AI $5.7M for noncompliance with previous order
France’s data protection authority last month fined facial recognition company Clearview AI €5.2 million (then-U.S. $5.7 million) for failing to comply with an October order to cease and desist from further violations of the General Data Protection Regulation.
-
News BriefChatGPT exits Italy after GDPR violation warning
The Italian data protection authority shut down ChatGPT in the country, alleging the AI chatbot violates European Union privacy laws and has no controls to stop it interacting inappropriately with young children.
-
ArticleDiscord fined $830K for GDPR lapses
Discord, a popular communication service primarily utilized by the video game community, was assessed a fine of €800,000 (U.S. $829,000) by the French data protection authority for multiple violations of the General Data Protection Regulation related to safeguarding user data.
More from Regulatory Enforcement
-
ArticleLarge wound care practice pays $45M, agrees to monitoring
One of the largest wound care practices in the nation and its founder have agreed to pay $45 million and be subjected to third-party monitoring, to settle allegations that the business intentionally overbilled Medicare by priming its electronic medical records system to do so.
-
News BriefSEC dismisses SolarWinds case tied to 2020 cyberattack
The dismissal of charges against SolarWinds for alleged cybersecurity lapses related to a 2020 Russian cyberattack in 2020 are the latest in a continuing pattern of leniency for corporations by the Trump administration.
-
PremiumPart Two: FCPA cases closed by DOJ, SEC since January
Since the start of the Trump Administration, the Department of Justice has been winding down a number of Foreign Corrupt Practices Act investigations with little public attention. This second article further explores how and why these FCPA matters have been closed.