Sunday

18th Aug 2019

New EU fines will apply to 'old' data breaches

Companies operating in the EU that are currently hiding serious data breaches similar to those that rocked Facebook last month better disclose those before 25 May, or be prepared to pay serious fines.

On that date, the EU's new general data protection regulation (GDPR) will come into force. The new EU regulation will require that companies that process personal data inform the relevant data protection authority in case of a data breach.

Read and decide

Join EUobserver today

Support quality EU news

Get instant access to all articles — and 18 year's of archives. 30 days free trial.

... or join as a group

If the compromised personal information is sensitive, companies will need to inform their customers too.

Failure to do so may lead to a fine, which could be up to €10m or two percent of the company's annual turnover, whichever is higher.

A European Commission official confirmed on Monday (9 April) that data breaches that happened before 25 May, but are kept silent until after that, will also be liable for such a fine.

"If this behaviour [of keeping a data breach secret] would continue - even if it started a long time ago and continues - and is discovered after the GDPR comes into play, then it's relevant," said the source.

The official briefed journalists on Monday on a swathe of digital affairs, a day ahead of the EU's Digital Day in Brussels, on the condition of anonymity. He made his comments on the GDPR when asked about it by EUobserver.

"If you discover the crime the moment it happens, but it started a long time ago, this doesn't really matter. This is not retroactive application, this is application of the actual case," he noted.

The official stressed that the 25 May deadline has been public knowledge for over a year.

"If there is a breach discovered the day after, the GDPR will apply," he said.

"I hope that every company dealing with our personal data takes the May deadline very, very seriously," he added.

This means that for companies that still have a kept-secret data breach, it may merit to fess up before 25 May.

In two recent high-profile cases of data breaches, they were revealed by media reports. Last month, it was revealed that Facebook users' data had been shared with UK consulting firm Cambridge Analytica without those users' consent.

Last November, Uber was shown to have covered up for over a year personal information of 57 million of its users.

EU to probe UK 'election-rigging' firm

MEPs are to investigate whether UK firm Cambridge Analytica and Facebook misused private data to sway votes amid increasingly lurid revelations.

Focus

Are EU data watchdogs staffed for GDPR?

The success of the new general data protection regulation (GDPR) will depend on whether data protection authorities enforce the new rules - which, in turn, will be at least partly determined by how many people they employ.

News in Brief

  1. Trump turned down: Greenland not for sale
  2. UK Libdems would back Clarke or Harman as new PM
  3. Six countries agree to take 'Open Arms' ship migrants
  4. Gibraltar judge: Iranian ship should be released
  5. Increasing fears of a global recession
  6. Far-right hate crimes on the rise in Germany
  7. EU steel tariffs have 'worked well' so far
  8. Italian court: Migrant rescue ship can enter Italian waters

Stalling on VAT reform costing billions, says Commission

German media outlet Correctiv, along with other newsrooms, have revealed how criminals annually cheat EU states out of billions in VAT fraud. The EU Commission says solutions exist - but member states refuse to budge on tax unanimity.

Stakeholders' Highlights

  1. UNESDAUNESDA reduces added sugars 11.9% between 2015-2017
  2. International Partnership for Human RightsEU-Uzbekistan Human Rights Dialogue: EU to raise key fundamental rights issues
  3. Nordic Council of MinistersNo evidence that social media are harmful to young people
  4. Nordic Council of MinistersCanada to host the joint Nordic cultural initiative 2021
  5. Vote for the EU Sutainable Energy AwardsCast your vote for your favourite EUSEW Award finalist. You choose the winner of 2019 Citizen’s Award.
  6. Nordic Council of MinistersEducation gets refugees into work
  7. Counter BalanceSign the petition to help reform the EU’s Bank
  8. UNICEFChild rights organisations encourage candidates for EU elections to become Child Rights Champions
  9. UNESDAUNESDA Outlines 2019-2024 Aspirations: Sustainability, Responsibility, Competitiveness
  10. Counter BalanceRecord citizens’ input to EU bank’s consultation calls on EIB to abandon fossil fuels
  11. International Partnership for Human RightsAnnual EU-Turkmenistan Human Rights Dialogue takes place in Ashgabat
  12. Nordic Council of MinistersNew campaign: spot, capture and share Traces of North

Latest News

  1. Selmayr did not keep formal records of lobby meetings
  2. EU asked to solve migrant rescue deadlock
  3. Internal EU paper: Second Brexit vote was no longer 'distant dream'
  4. EU has 'zero incentive' to break open 'trilogue' deals
  5. Denmark plans import ban on EU-approved pesticide
  6. US offers Johnson helping hand on Brexit
  7. Italy: New government without Salvini in the making
  8. Brexit row delays financial products transparency review

Join EUobserver

Support quality EU news

Join us