The Swedish data protection authority, Integritetsskyddsmyndigheten, fined Klarna Bank 7.5 million kronor after an investigation found it did not comply with several rules of the EU General Data Protection Regulation. During the inquiry, Klarna “continuously” changed the information provided on how the company handles personal data. Klarna did not provide the legal basis for how personal data was processed under one company system and provided “misleading” information about who received personal data when data was shared with Swedish and foreign credit information companies.
29 March 2022
Swedish DPA fines bank for EU GDPR violations
Related stories
Notes from the IAPP Canada: Take a deep breath and dive in on AI training
Notes from the Asia-Pacific region: More new problems to solve as AI, data march forward
Notes from the IAPP Europe: It's a GDPR week
Proposed moratorium on state-level AI regulation heads to US Senate
'We cannot be left behind:' How Canada is balancing AI regulation, innovation
