France's data protection authority, the Commission nationale de l'informatique et des libertes, fined online advertising company Criteo 40 million euros for alleged EU General Data Protection Regulation violations. The CNIL said Criteo did not verify individuals' consent for data processing while violating principles for information and transparency, right of access, and data erasure. Privacy rights group NOYB data protection lawyer Romain Robert said the decision "is a strong signal to the ad-tech industry that they will face dire consequences" for violations.
22 June 2023
CNIL fines Criteo 40M euros over data processing consent violation
RELATED STORIES
Retrospective: 2024 in state sectoral privacy law and AI law
Notes from the Asia-Pacific region: India's PM talks global governance for digital technology
A view from Brussels: The EU acronym soup just got a few more spices in it
Managing third-party risks under EU data protection, cybersecurity laws
Why de-localizing data helps: India's position