Short Reads

Countdown 1 day until GDPR : Will administrative fines for violation of the GDPR increase compared to the fines imposed by current national regimes?

Stibbe - Will administrative fines for violation of the GDPR increase

Countdown 1 day until GDPR : Will administrative fines for violation of the GDPR increase compared to the fines imposed by current national regimes?

24.05.2018 EU law

Only 1 more day to go before the GDPR becomes fully effective. Preparing your company for the application of this new regulation requires a correct understanding of its principles. Each week, we highlight one particular misconception regarding the interpretation of the GDPR.

Will administrative fines for violation of the GDPR increase compared to the fines imposed by current national regimes?

The maximum level of administrative fines will effectively increase compared to the fines imposed by current national regimes. The GDPR sets two categories of administrative fines.

Some violations, including violations concerning aspects such as privacy by design and privacy by default, records processing activities, security, personal data breach notifications, data protection impact assessments, the ​designation of a data protection officer etc., are subject to administrative fines up to EUR 10 million or up to 2% of the total worldwide annual turnover of the preceding financial year of the undertaking, whichever is higher.

Other violations, including violations concerning the basic principles for lawful processing, the conditions for valid consent, data subjects’ rights, transfers of data outside the EU, etc., are subject to administrative fines up to EUR 20 million or up to 4% of the total worldwide annual turnover of the preceding financial year of the undertaking.

Nevertheless, the GDPR puts forward as a key principle that each supervisory authority must ensure that the administrative fines in each case must be effective, proportionate, and dissuasive with respect to the violation. When deciding whether to impose an administrative fine and on the amount thereof, regard should be given to the specific circumstances of the violation, including the nature, gravity, and duration of the infringement, the intentional or negligent character, the degree of responsibility, any previous infringements, the financial benefits gained, etc.

 

Stibbe, together with Chiomenti, Cuatrecasas, GIDE and Gleiss Lutz, have gathered this useful information, reflecting some common misconceptions about the implementation of the GDPR.

Team

Related news

08.11.2019 EU law
Erik Valgaeren is session chair during IBA's 6th Biennial Technology Law Conference in Berlin

Speaking slot - Stibbe's TMT partner, Erik Valgaeren, chairs a session discussing the new legal challenges, created by the most recent technological developments in the field of software, data, online services and telecom, including 5G, pricing algorithms, platforms and data monetization. This session will take place on the 8th of November 2019 in Berlin.

Read more

08.11.2019 BE law
Interview with Wouter Ghijsels on Next Gen lawyers

Articles - Stibbe’s managing partner Wouter Ghijsels shares his insights on the next generation of lawyers and the future of the legal profession at the occasion of the Leaders Meeting Paris where Belgian business leaders, politicians and inspiring people from the cultural and academic world will discuss this year's central theme "The Next Gen".

Read more

13.11.2019 NL law
Een strategisch actieplan voor het gebruik van AI door de overheid

Short Reads - Een paar jaren geleden hoorde je er nog nauwelijks over, maar nu kan je er bijna niet meer om heen: kunstmatige intelligentie, ook wel artificiële intelligentie (AI) genoemd.  AI verwijst naar systemen die intelligent gedrag vertonen door hun omgeving te analyseren en – met een zekere mate van zelfstandigheid – actie ondernemen om specifieke doelen te bereiken. Denk aan zelfrijdende auto's of slimme thermostaten. 

Read more

Our website uses functional cookies for the functioning of the website and analytic cookies that enable us to generate aggregated visitor data. We also use other cookies, such as third party tracking cookies - please indicate whether you agree to the use of these other cookies:

Privacy – en cookieverklaring