Norway's data protection authority, Datatilsynet, has issued an NOK 400,000 fine to retailer Coop Finnmark for violating the EU General Data Protection Regulation. The violation involved a store manager circulating store surveillance footage after recording the video on their phone. Datatilsynet found the manager's disclosure lacked a basis for processing and breached Article 5(1)(a). "The case is a textbook example of how to lose control over personal data that is shared and that it is spread quickly," Data Inspectorate Legal Adviser Embla Helle Nerland said. (Original post is in Norwegian.)
If you want to comment on this post, you need to login.