France’s data protection authority, the Commission nationale de l'informatique et des libertés, fined software developer Discord 800,000 euros for failing to comply with EU General Data Protection Regulation requirements on data retention periods and personal data security. The CNIL said it took into account Discord's efforts to reach compliance throughout its investigation and the "fact that its business model is not based on the exploitation of personal data" when deciding the amount of the fine.