The Administrative Court of Stockholm confirmed Google violated the EU General Data Protection Regulation; however, the court also reduced the fine issued by the Swedish data protection authority. The court found Google did not properly exercise consumers' right to be forgotten as laid out in the GDPR. It also determined the Swedish DPA's initial fine of SEK 75 million was too high, and ordered the penalty to be reduced to SEK 52 million. Editor's note: Sofia Edvardsen, CIPP/E, wrote about the case in this piece for The Privacy Advisor.
If you want to comment on this post, you need to login.