The Czech Republic's data protection authority, Úřad pro ochranu osobních údajů, fined cybersecurity software company Avast 13.7 million euros for allegedly illegally processing consumers' data. Consumer rights organization FACUA, which filed a complaint against the company in 2020, said users could have been identified through private browsing data collected and sold by the company without their knowledge or authorization. The organization said sold data included user locations and GPS coordinates, social media profiles and web searches.
31 March 2023
Czech DPA fines software company 13.7M euros
Related stories
Notes from the IAPP Europe: Wrapping up November with the IAPP DPC
Ireland's DPC details legitimate interest prong of its LinkedIn enforcement action
What the new European Commission could mean for digital regulation
IAPP DPC 2024: Reynders discusses GDPR enforcement harmonization, adequacy developments
US Senate subcommittee ponders accountability for AI-assisted scams
