September 27, 2021

Amazon potential 25 425 million EU privacy fines

It has proposed a fine of more than $ 425 million against an EU privacy regulator

Amazon.com Inc.,

AMZN 1.38%

Those familiar with the matter said it was part of a process that could impose hefty fines under the camp’s privacy law.

People said that Luxembourg’s Data-Protection Commission, CNPD, had spread the draft decision allowing Amazon’s privacy practices and proposed fines among the camp’s 26 national officials. CNPD is Amazon’s leading privacy regulator in the EU because Amazon has its EU headquarters in Grand Duchy.

The Luxembourg case relates to violations in Europe Public Data Protection Regulation or GDPR, Is linked to the collection and use of Amazon’s personal data, and its cloud-computing business is not affiliated with Amazon Web Services, said one person familiar with the matter. The man declined to elaborate on the specific allegations against Amazon.

An Amazon spokesman declined to comment. The company has previously stated that it prioritizes the privacy of its customers and complies with the law in all the countries in which it operates. A CNPD spokesman was not immediately available for comment.

Before the draft decision can be finalized, it must be effectively acknowledged by other EU privacy regulators, a process that can take several months and lead to significant changes, including higher or lower fines.

The proposed Luxembourg penalty will be $ 21.3 billion in Amazon’s net income by 2020 and 0.1% of its $ 386 billion in sales. In GDP, regulators can impose fines of up to 4% of the company’s annual revenue.

The regulator of Luxembourg has received a few objections to its draft decision, including one that says the minimum fine should be higher, said someone familiar with the matter. Luxembourg can resolve objections amicably, or reject them, and provoke a debate and vote among all EU privacy regulators on the European Data Protection Board.

The new data-privacy law of the European Union, known as the GDPR, created the first Bill of Rights for Consumer Privacy. Here’s what you need to know. (Originally released on August 8, 2018)

Draft results with penalty size signal a The new wave of privacy enforcement against big tech companies In Europe, when silicon fence giants are subjected to global scrutiny.

Ireland’s privacy regulator, which leads to enforcement in GDP

Facebook Inc.,

letters Inc.

Google and

Apple Inc.

With their EU headquarters in the country, it said it expects to take draft decisions in about half a dozen privacy cases involving large technology companies this year.

An Irish draft decision distributed to other regulators alleges that the Facebook chat service has a GDPR flaw in the transparency of data sharing through WhatsApp. The results of the draft suggest a fine of about $ 30 million to $ 50 million, equivalent to $ 37 million to $ 61 million, according to those familiar with the matter.

A Facebook spokesman declined to comment.

The EU’s growing privacy enforcement comes with increasing hopeless enforcement, with European and US regulators launching a number of lawsuits against large technology companies. Last week, top competitors in the UK and the EU announced formal no-confidence studies on Facebook’s dating service and its classified ad service market.

A Facebook spokesperson said last week that his market and dating services “operate in a highly competitive environment with many large positions. We will continue to cooperate to prove that investigations are ineligible. ”

When it comes to privacy, activists have complained that the pace of enforcement in Europe is too slow. Since coming into force in 2018, the largest penalty under the law is a 50 million fine against Google According to law firm DLA Piper, from the Privacy Regulator of France.

Ireland, which has led many large American technology companies to implement the EU, has come under fire, particularly from activists and politicians for not publishing more results. So far, the authority has released the final decision on a major technical case, imposing a fine of 50,000 to 450,000 on Twitter in December.

Responding to criticism, Helen Dixon, Ireland’s Privacy Controller, said the technical cases were innovative and that companies should be given their proper procedural rights to respond substantially to all allegations or later thrown in court.

Write At [email protected]

Copyright © 2020 Dow Jones & Company, Inc. All rights reserved. 87990cbe856818d5eddac44c7b1cdeb8