Swedish Court Uphelds GDPR Fine on Spotify for Data Processing Failures
Court upheld Spotify AB’s 5.2 million euros fine for failing to provide clear GDPR information and safeguards for personal data processing and transfers.
Court upheld Spotify AB’s 5.2 million euros fine for failing to provide clear GDPR information and safeguards for personal data processing and transfers.
The High Court granted TikTok a stay on the DPC’s data transfer suspension to China until October while the full legal challenge, including a €530 million fine, is considered.
The Higher Regional Court of Cologne upheld Meta’s lawful use of public EU data for AI training under GDPR, despite ongoing criticism from German data protection authorities.
The Belgian Market Court annulled part of the APD’s decision on IAB Europe’s TCF, limiting its joint controllership to TC Strings only, aligning with the CJEU ruling.
WhatsApp receives support from a CJEU adviser in its challenge against the EDPB over a €225 million fine for privacy violations.
Philippe Latombe’s legal challenge to the Trans-Atlantic Data Privacy Framework raises questions about EU-US data transfers and potential implications for data protection.
Amazon lost its appeal against a 746 million euro fine for GDPR violations, as Luxembourg’s court upheld the decision by the CNPD.
The EDPB adopted a statement on the PNR Directive, urging EU countries to implement changes in line with the CJEU’s judgment to enhance passenger data protection.
Meta challenges a €91 million fine from Ireland’s DPC for improperly storing user passwords, claiming the penalty is excessive and misapplied under GDPR.
The European Court of Justice ruled that train companies cannot require gender identification for ticket purchases, promoting inclusivity and privacy rights.
The EU court ordered the European Commission to pay damages for illegal data transfers, highlighting the importance of compliance with EU data transfer rules and potential for class actions.
The CJEU ruled that complaint frequency doesn’t invalidate GDPR complaints unless they are clearly vexatious or abusive, impacting data protection enforcement across the EU.