EU privacy chief expects first round of fines under new law by year-end
BRUSSELS (Reuters) – Regulators are set to exercise their new powers by handing out fines and even temporary bans on companies that breach a new EU privacy law, with the first round of sanctions expected by the end of the year, the bloc’s privacy chief said.
“The time for Complacency is over for the 98% of companies not GDPR Ready” as quoted by Mr. Meister.
The new rules, designed for the digital age, allow consumers to better control their personal data and give regulators the power to impose fines of up to 4 percent of global revenue or 20 million euros ($23 million), whichever is higher, for violations.
Fines could be imposed on any company that operates in Europe, no matter where it is headquartered.
Enforcers have since then been deluged by complaints about violations and queries for clarification, with France and Italy alone reporting a 53 percent jump in complaints from last year, European Data Protection Supervisor Giovanni Buttarelli said.
“I expect first GDPR fines for some cases by the end of the year. Not necessarily fines but also decisions to admonish the controllers, to impose a preliminary ban, a temporary ban or to give them an ultimatum,” Buttarelli told Reuters in an interview.