REWE International $9M GDPR fine a lesson in managing subsidiary risk
By 
Neil Hodge2022-01-25T19:24:00
A recent decision by the Austrian Data Protection Authority against food retailer REWE International underlines the fact parent companies are ultimately responsible for how their subsidiaries manage people’s data, even if the offshoot entity operates separately.
Related articles
-
ArticleGDPR enforcement roundup: Austrian Post facing new record fine
The Austrian Post is once again appealing what would be a record GDPR fine in the country after successfully defending itself in the first instance. Other recent decisions under the law provide further enforcement trends.
-
ArticleTrio of U.K. fines expose third-party risks under GDPR
Recent GDPR fines against British Airways, Marriott, and Ticketmaster by the U.K. Information Commissioner’s Office each saw the regulator dismiss claims by the companies that third parties were primarily responsible for the data breaches in question.
-
Article
In second drastic reduction, ICO fines Marriott $23.8M
The Marriott GDPR fine handed down by the U.K. Information Commissioner’s Office is less than 20 percent of the original number the regulator proposed, the second time this month such a drastic reduction has taken place.
More from Regulatory Enforcement
-
News BriefCompliance concerns surface at Fannie Mae following internal probe
A probe into Fannie Mae uncovered compliance and governance concerns involving FHFA director Bill Pulte and other senior officials. The result, so far at least, was not to address the concerns uncovered but to fire staff in Fannie Mae’s ethics and internal investigations unit.
-
ArticleDOJ dismisses indictment against Cassava advisor amid legal flaws
The DOJ dropped a June 2024 indictment against a Cassava Sciences advisor, closing a case tied to an alleged short-selling scheme and related government probes. The case was criticized for fundamental flaws in evidence and legal procedures.
-
ArticleFormer Capula CCO alleges misconduct and retaliation at the hedge fund firm
The former U.S. chief compliance officer of hedge fund firm Capula Investment Management has blown the whistle against his former employer, alleging he was terminated for raising concerns about improper expensing practices.