France's data protection authority, the Commission nationale de l'informatique et des libertes, fined online advertising company Criteo 40 million euros for alleged EU General Data Protection Regulation violations. The CNIL said Criteo did not verify individuals' consent for data processing while violating principles for information and transparency, right of access, and data erasure. Privacy rights group NOYB data protection lawyer Romain Robert said the decision "is a strong signal to the ad-tech industry that they will face dire consequences" for violations.
22 June 2023
CNIL fines Criteo 40M euros over data processing consent violation
RELATED STORIES
Notes from the Asia-Pacific region: Quiet, contemplation follows introduction of initial Australia Privacy Act reforms
A view from Brussels: Trans-Atlantic transfers deal gets thumbs-up as adequacy remains a strategic priority
US courts, regulators weigh in on online tracking in health care
A multistage, interdisciplinary approach to AI assessments
European Commission report reviews progress of EU-US DPF