Spanish DPA dings retailer Uniqlo $294K over GDPR violations
By 
Jeff Dale2024-08-19T19:25:00
Spain’s data protection authority (DPA) fined retailer Uniqlo Europe 270,000 euros (U.S. $294,000) over admitted violations of the European Union’s General Data Protection Regulation (GDPR).
The misconduct stemmed from a human resources representative at the Spanish branch of Uniqulo erroneously sending payroll information of nearly 450 current and former employees to a single employee who was requesting a copy of their paystub, the Agencia Española de Protección de Datos said in its penalty notice, dated Aug. 12.
The Spanish DPA assessed a 20 percent discount on the penalty after the company admitted its violations, with an original penalty of 360,000 euros (U.S. $394,000). The company ultimately violated Articles 5, 32, and 83 of the GDPR.
Related articles
-
News BriefLithuanian DPA orders Vinted to pay $2.6M over GDPR violations
The data protection authority of Lithuania levied a fine of 2.4 million euros (U.S. $2.6 million) against Vinted UAB, an online clothing trading and exchange platform, for alleged violations of the European Union’s General Data Protection Regulation.
-
News BriefCzech DPA fines Avast $15M over GDPR violations
The Czech Republic’s data protection authority issued a fine of 351 million Czech koruna (U.S. $15 million) against antivirus software vendor Avast for alleged violations of the General Data Protection Regulation.
-
News BriefItalian DPA fines UniCredit $3M over data breach GDPR lapses
The Italian data protection authority announced a fine of €2.8 million (U.S. $3 million) against UniCredit for alleged violations of the General Data Protection Regulation regarding insufficient security measures the bank had in place during a cyberattack.
More from Regulatory Enforcement
-
News BriefCFPB shutdown appears imminent, enforcement transferred to DOJ
The Consumer Financial Protection Bureau is reportedly transferring its enforcement caseload to the DOJ, one of multiple indicators telegraphing its eminent shutdown.
-
ArticleRussian web company that hosted LockBit ransomware sanctioned
Two Russian web-hosting services that provide cover for ransomware operators, including Lockbit, have been sanctioned by the U.S. Treasury’s OFAC and international partners.
-
News BriefDOJ secures $118 million penalty in FCPA violation case tied to Guatemalan telecom firm
The parent company of a telecom subsidiary in Guatemala agreed to pay $118.2 million to settle allegations of improper payments made to government officials, but the U.S. Department of Justice chose not to impose a compliance monitor to administer the firm’s compliance with the Foriegn Corrupt Practices Act (FCPA).