Sweden's data protection authority, the Integritetsskyddsmyndigheten, fined Spotify SEK58 million for alleged EU General Data Protection Regulation violations related to transparency. The IMY found Spotify responds to data access requests but "does not inform clearly enough about how this data is used by the company." The regulator added Spotify needs to be "more specific" with its disclosure of data practices and make it "easy for the person requesting access to their data to understand how the company uses this data."
13 June 2023
Sweden's DPA issues SEK58M GDPR fine to Spotify
Related stories
Notes from the IAPP Canada: Navigating the gray area of biometrics
Data brokers, beware: Distinguishing PADFAA from the DOJ's DSP
A view from DC: Conflicts over data are battles for power
Behind the camera with 'Privacy People' documentarian and privacy pro Stephen Bolinger
Notes from the Asia-Pacific region: Australia's OAIC takes action over Optus breach
