Spanish DPA dings retailer Uniqlo $294K over GDPR violations
By 
Jeff Dale2024-08-19T19:25:00
Spain’s data protection authority (DPA) fined retailer Uniqlo Europe 270,000 euros (U.S. $294,000) over admitted violations of the European Union’s General Data Protection Regulation (GDPR).
The misconduct stemmed from a human resources representative at the Spanish branch of Uniqulo erroneously sending payroll information of nearly 450 current and former employees to a single employee who was requesting a copy of their paystub, the Agencia Española de Protección de Datos said in its penalty notice, dated Aug. 12.
The Spanish DPA assessed a 20 percent discount on the penalty after the company admitted its violations, with an original penalty of 360,000 euros (U.S. $394,000). The company ultimately violated Articles 5, 32, and 83 of the GDPR.
Related articles
-
News BriefLithuanian DPA orders Vinted to pay $2.6M over GDPR violations
The data protection authority of Lithuania levied a fine of 2.4 million euros (U.S. $2.6 million) against Vinted UAB, an online clothing trading and exchange platform, for alleged violations of the European Union’s General Data Protection Regulation.
-
News BriefCzech DPA fines Avast $15M over GDPR violations
The Czech Republic’s data protection authority issued a fine of 351 million Czech koruna (U.S. $15 million) against antivirus software vendor Avast for alleged violations of the General Data Protection Regulation.
-
News BriefItalian DPA fines UniCredit $3M over data breach GDPR lapses
The Italian data protection authority announced a fine of €2.8 million (U.S. $3 million) against UniCredit for alleged violations of the General Data Protection Regulation regarding insufficient security measures the bank had in place during a cyberattack.
More from Regulatory Enforcement
-
News BriefDOJ sues Uber over alleged discrimination against disabled riders
The DOJ sued Uber Thursday, alleging it violated the Americans with Disabilities Act (ADA) by denying people with disabilities equal access to its services.
-
ArticleEU targets crypto, fintech firms in push to tackle money laundering
Europe’s banking regulator warns that weak compliance at fintech, regtech, and crypto firms may let money laundering and terrorist financing risks slip through. The EBA also found EU regulators’ approaches are often inconsistent and unclear.
-
ArticleCalifornia, Colorado, and Connecticut launch joint crackdown on privacy violators
California, Colorado, and Connecticut launched a joint enforcement sweep against businesses that fail to honor consumers’ online opt-out requests, the states announced Tuesday.