Luxembourg's National Commission for Data Protection issued an $888 million fine against Amazon for alleged violations of the EU General Data Protection Regulation, Bloomberg reports. Amazon disclosed the fine in a filing with the U.S. Securities and Exchange Commission. The technology company plans to appeal the penalty. “There has been no data breach, and no customer data has been exposed to any third party,” Amazon said in a statement. “These facts are undisputed. We strongly disagree with the CNPD’s ruling.” La Quadrature du Net, the organization that initiated the complaint against Amazon, issued its reaction to the fine.
Full Story

CNIL: $888M GDPR fine against Amazon is of ‘unprecedented scale’

France's data protection authority, the Commission nationale de l’informatique et des libertés, issued a response to the potential $888 million fine against Amazon by Luxembourg’s National Commission for Data Protection. The CNIL said Luxembourg’s decision, which follows a complaint by La Quadrature du Net, is “of an unprecedented scale and marks a turning point in the application of the (EU General Data Protection Regulation) and the protection of the rights of European nationals.”
Full Story

CNIL provides additional details on Amazon's GDPR fine

La Quadrature du Net provided additional information on the $888 million fine the Luxembourg data protection authority, the National Commission for Data Protection, levied against Amazon. The details were given to the group by France's data protection authority, the Commission nationale de l’informatique et des libertés. The CNIL confirmed the CNPD fined Amazon for targeting La Quadrature du Net for advertising purposes without legal basis, a violation of the EU General Data Protection Regulation. Other EU member states signed off on the Luxembourg decision and Amazon will have six months to correct the issue.