Sweden's data protection authority, the Integritetsskyddsmyndigheten, fined Spotify SEK58 million for alleged EU General Data Protection Regulation violations related to transparency. The IMY found Spotify responds to data access requests but "does not inform clearly enough about how this data is used by the company." The regulator added Spotify needs to be "more specific" with its disclosure of data practices and make it "easy for the person requesting access to their data to understand how the company uses this data."
13 June 2023
Sweden's DPA issues SEK58M GDPR fine to Spotify
RELATED STORIES
Privacy in Arkansas: Is Arkansas ready for a consumer privacy law?
A view from DC: CFPB calls for states to regulate financial privacy
Notes from the IAPP Canada: OPC's WADA investigation 'raises some interesting issues'
A view from Brussels: European Commission's new tech policy center of gravity
First fine imposed under Thailand's Personal Data Protection Act
