The biggest GDPR fine was recently issued by France’s National Data Protection Commission (CNIL) to Google for multiple GDPR violations, the regulator recently announced. The fine? A whooping 50 million euros (about $57 million).
Two Types of GDPR Violations
First, CNIL found that Google provided information to users in a non-transparent way, saying, “The relevant information is accessible after several steps only, implying sometimes up to 5 or 6 actions,” according to the CNIL.
Second, CNIL concluded that Google was not validly obtaining users’ permission for data processing and ads personalization purposes. The users’ consent, CNIL claims, “is not sufficiently informed,” and it’s “neither ‘specific’ nor ‘unambiguous’.”
Confirming Customer Sentiment
The CNIL’s findings echo what many users have felt when dealing with privacy settings of large online companies, such as Google and Facebook; essentially stating that while it may be possible to opt out of various ads personalization and data processing schemes, the process and settings are too convoluted for many users to understand. Continue reading Google Hit with Biggest Ever GDPR Fine