DLA Piper publishes the results from its GDPR Fines and Data Breach Survey 2023. The report indicates another record year, as Data protection authorities (DPAs) across Europe, along with the UK, Norway, Iceland and Liechtenstein, issued a total of €2.92bn (£2.54bn) in General Data Protection Regulation (GDPR) fines since 28 January 2022. The amount more than doubles the aggregate value of GDPR fines in 2021 and demonstrates DPAs growing confidence to impose monetary penalties. DLA Piper also noted the use of the GDPR's cooperation and consistency mechanisms resulting in the European Data Protection Board (EDPB) demanding an average of 630% increases in proposed fines. As expected, the Irish Data Protection Commission (DPC) dominates the report, with five of the top ten largest fines issued in the year. The DPC also leads the aggregate GDPR fines issued to date at €1.0bn (£0.87bn). However, in a sign organisations are becoming risk-averse to the fear of investigations, enforcement, fines and compensation claims, the approximate number of data breach notifications fell to 109,000 from 120,000 the year previously.
What is this page?
You are reading a summary article on the Privacy Newsfeed, a free resource for DPOs and other professionals with privacy or data protection responsibilities helping them stay informed of industry news all in one place. The information here is a brief snippet relating to a single piece of original content or several articles about a common topic or thread. The main contributor is listed in the top left-hand corner, just beneath the article title.
The Privacy Newsfeed monitors over 300 global publications, of which more than 4,350 summary articles have been posted to the online archive dating back to the beginning of 2020. A weekly roundup is available by email every Friday.