News and analysis for the well-informed compliance or audit exec. Select an option and click continue.
Annual Membership $499 Value offer
Full price one year membership with auto-renewal.
Membership $599
One-year only, no auto-renewal.
- Chief Compliance Officer and VP of Legal Affairs, Arrow Electronics
By Jeff Dale2023-06-13T19:25:00
Sweden’s data protection authority (DPA) levied a fine of 58 million Swedish krona (U.S. $5.4 million) against music streaming service Spotify following an audit on how the company handles customers’ rights to access their personal data.
The Swedish Authority for Privacy Protection acknowledged Spotify is compliant with General Data Protection Regulation (GDPR) rules about providing data access to users when requested but ran afoul of Article 15 of the privacy law by “not inform[ing] clearly enough about how this data is used,” the DPA said in a press release Tuesday.
In January 2019, privacy campaigner Max Schrems filed a complaint, along with two others, alleging Spotify breached Article 15 of the GDPR. The complaint was originally filed in Austria but routed to Sweden, where Spotify’s EU headquarters is located, in line with the GDPR’s one-stop shop mechanism.
THIS IS MEMBERS-ONLY CONTENT. To continue reading, choose one of the options below.
News and analysis for the well-informed compliance or audit exec. Select an option and click continue.
Annual Membership $499 Value offer
Full price one year membership with auto-renewal.
Membership $599
One-year only, no auto-renewal.
2023-09-07T13:21:00Z By Neil Hodge
Companies that think paying reduced ransomware demands would be a better move than informing regulators of a data breach and facing enforcement are playing with fire, according to experts.
2023-08-31T16:55:00Z By Kyle Brasseur
Sweden’s data protection authority issued a penalty of 35 million Swedish krona (U.S. $3.2 million) against insurance company Trygg-Hansa for alleged security flaws that made customer insurance information accessible on the internet.
2023-06-20T16:18:00Z By Kyle Brasseur
The former chief privacy officer at Grindr is suing the company behind the LGBTQ dating app for wrongful termination regarding alleged privacy violations he raised that new management ignored.
2024-12-06T12:45:00Z By Jaclyn Jaeger
A defamation lawsuit filed by a whistleblower against USAA, which a Florida judge recently dismissed on a technicality, revealed in public court records an estimated 400,000 violations of the Military Lending Act by USAA Federal Savings Bank (USAA Bank), an indirect wholly owned subsidiary of USAA.
2024-12-03T21:32:00Z By Aaron Nicodemus
German petrochemical parts supplier Aiotec agreed to pay $14.5 million to settle allegations that it engaged in a four-year conspiracy to dismantle and ship a plastics manufacturing plant owned by a U.S. company to Iran, in violation of U.S. sanctions.
2024-12-03T17:48:00Z By Aaron Nicodemus
Kiromic BioPharma will pay no fine to the Securities and Exchange Commission after self-reporting that it failed to disclose material information about two cancer drugs to investors.
Site powered by Webvision Cloud