The Czech Republic's data protection authority, Úřad pro ochranu osobních údajů, fined cybersecurity software company Avast 13.7 million euros for allegedly illegally processing consumers' data. Consumer rights organization FACUA, which filed a complaint against the company in 2020, said users could have been identified through private browsing data collected and sold by the company without their knowledge or authorization. The organization said sold data included user locations and GPS coordinates, social media profiles and web searches.
31 March 2023
Czech DPA fines software company 13.7M euros
RELATED STORIES
Controllers, processors and subprocessors in chains
Notes from the IAPP Canada: Recommendations, calls to reform Privacy Act 'a good start'
A view from DC: Marriott and the minimum extent necessary
Retrospective: 2024 in state sectoral privacy law and AI law
Notes from the Asia-Pacific region: India's PM talks global governance for digital technology