REWE International $9M GDPR fine a lesson in managing subsidiary risk
By 
Neil Hodge2022-01-25T19:24:00
A recent decision by the Austrian Data Protection Authority against food retailer REWE International underlines the fact parent companies are ultimately responsible for how their subsidiaries manage people’s data, even if the offshoot entity operates separately.
Related articles
-
ArticleGDPR enforcement roundup: Austrian Post facing new record fine
The Austrian Post is once again appealing what would be a record GDPR fine in the country after successfully defending itself in the first instance. Other recent decisions under the law provide further enforcement trends.
-
ArticleTrio of U.K. fines expose third-party risks under GDPR
Recent GDPR fines against British Airways, Marriott, and Ticketmaster by the U.K. Information Commissioner’s Office each saw the regulator dismiss claims by the companies that third parties were primarily responsible for the data breaches in question.
-
Article
In second drastic reduction, ICO fines Marriott $23.8M
The Marriott GDPR fine handed down by the U.K. Information Commissioner’s Office is less than 20 percent of the original number the regulator proposed, the second time this month such a drastic reduction has taken place.
More from Regulatory Enforcement
-
News BriefFTC fines telehealth firm over deceptive weight-loss claims and fake reviews
The U.S. Federal Trade Commission said it has settled with telemedicine service Southern Health Solutions, Inc. over allegations the company used deceptive pricing and weight-loss claims, along with fake reviews and testimonials, to sell its weight-loss programs.
-
ArticleU.K. extends bullying and harassment rules to 37,000 financial services firms
Serious bullying and harassment count as misconduct in regulated financial services firms, per a July 1 clarification by the U.K. Financial Conduct Authority, which said non-financial misconduct rules now applied only to banks will extend to 37,000 more firms starting September 1, 2026.
-
News BriefDOJ clears $4.4 Billion T‑Mobile acquisition of UScellular
The U.S. Department of Justice arppoved T-Mobile’s acquisition of competitor UScellular. The move came a day after T-Mobile announced it had dropped its diversity, equity, and inclusion programs, a frequent target for Trump’s administration.