umraniye escort pendik escort
maderba.com
implant
olabahis
canli poker siteleri meritslot oleybet giris adresi betgaranti
escort antalya
istanbul escort
sirinevler escort
antalya eskort bayan
brazzers
sikis
bodrum escort
Short Reads

Countdown 1 day until GDPR : Will administrative fines for violation of the GDPR increase compared to the fines imposed by current national regimes?

Stibbe - Will administrative fines for violation of the GDPR increase

Countdown 1 day until GDPR : Will administrative fines for violation of the GDPR increase compared to the fines imposed by current national regimes?

24.05.2018 EU law

Only 1 more day to go before the GDPR becomes fully effective. Preparing your company for the application of this new regulation requires a correct understanding of its principles. Each week, we highlight one particular misconception regarding the interpretation of the GDPR.

Will administrative fines for violation of the GDPR increase compared to the fines imposed by current national regimes?

The maximum level of administrative fines will effectively increase compared to the fines imposed by current national regimes. The GDPR sets two categories of administrative fines.

Some violations, including violations concerning aspects such as privacy by design and privacy by default, records processing activities, security, personal data breach notifications, data protection impact assessments, the ​designation of a data protection officer etc., are subject to administrative fines up to EUR 10 million or up to 2% of the total worldwide annual turnover of the preceding financial year of the undertaking, whichever is higher.

Other violations, including violations concerning the basic principles for lawful processing, the conditions for valid consent, data subjects’ rights, transfers of data outside the EU, etc., are subject to administrative fines up to EUR 20 million or up to 4% of the total worldwide annual turnover of the preceding financial year of the undertaking.

Nevertheless, the GDPR puts forward as a key principle that each supervisory authority must ensure that the administrative fines in each case must be effective, proportionate, and dissuasive with respect to the violation. When deciding whether to impose an administrative fine and on the amount thereof, regard should be given to the specific circumstances of the violation, including the nature, gravity, and duration of the infringement, the intentional or negligent character, the degree of responsibility, any previous infringements, the financial benefits gained, etc.

 

Stibbe, together with Chiomenti, Cuatrecasas, GIDE and Gleiss Lutz, have gathered this useful information, reflecting some common misconceptions about the implementation of the GDPR.

Team

Related news

04.03.2021 BE law
Webinar: Responding to Personal Data Breaches in the Post-GDPR era

Seminar - On 24-26 March 2021 ERA (Adademy of European Law) organises an online Conference "Responding to Personal Data Breaches in the Post-GDPR era". Erik Valgaeren, our Brussels TMT partner, addresses the topic "Managing personal data breach in a complex international scenario", including cross border cases in the EU and breaches at non-EU establishments.

Read more

12.02.2021 EU law
After the Uber case and the Airbnb case … the Star Taxi App case: focus on the question of the qualification as “Information Society Service”

Articles - Societal and digital developments are reflected in the case law of the CJEU. For several years now, European judges resolve disputes relating to digital applications and the services they provide. On 3 December 2020, they handed down a judgment in a case concerning Star Taxi App. This blog analyses the Star Taxi App case law in the light of the Uber case law and the Airbnb case law. The three judgments have in common the question of the qualification of services as Information Society Services.  

Read more