Spain's data protection authority, the Agencia Española de Protección de Datos, fined Google 10 million euros for EU General Data Protection Regulation violations. The AEPD found third-party data sharing by Google with legal database Lumen Project lacked an opt-out mechanism for data subjects. The shared data included personally identifiable data, email addresses and individuals' legal claims. The sanction also calls for Google to delete all the personal data shared with Lumen and halt further use of that data.
AEPD hands Google 10M euro GDPR fine
Related stories
Notes from the IAPP Canada: Regulators should better understand data breach complexities
Ontario's IPC works toward balancing youth safeguards, empowerment
A view from DC: Pride, coded language and the tragic irony of a private life
UK Parliament advances Data (Use and Access) Bill, awaits Royal Assent
A view from Brussels: Is Europe ramping up its agenda on protecting children online?
