GDPR and Retail - Information Management Today

German laptop retailer fined €10.4m under GDPR for video-monitoring employees

Security Affairs

JANUARY 18, 2021

fine under GDPR against the online laptop and electronic goods retailer NBB for video-monitoring employees. million fine under the GDPR against an online laptop and electronic goods retailer NBB’s (notebooksbilliger.de) for video-monitoring employees for at least a couple of years. .” Pierluigi Paganini.

Retail

Retail GDPR Sales Privacy

Clothing Retailer H&M Told to Wear $41 Million GDPR Fine

Data Breach Today

OCTOBER 5, 2020

Employee Surveillance Violations Trigger Germany's Biggest Privacy Fine to Date Privacy regulators in Germany have slammed clothing retailer H&M with a $41 million fine for collecting and retaining private employee data in violation of the EU's General Data Protection Regulation.

Retail

Retail GDPR Privacy

Amazon Hit With $885 Million GDPR Fine

Data Breach Today

JULY 30, 2021

Online Retailer Plans to Appeal the Decision Handed Down by EU Regulators Amazon reports that it's been fined 746 million euros ($885 million) under the European Union's General Data Protection Regulation for violating privacy rights in its advertising program. The company says it plans to appeal.

GDPR

GDPR Retail Privacy IT

Webinars

How to Achieve High-Accuracy Results When Using LLMs

MORE WEBINARS

Bad Cookies: Privacy Regulator Fines Supermarket Giant

Data Breach Today

DECEMBER 4, 2020

Million Fine for French Supermarket Giant Carrefour for Alleged GDPR Violations France's privacy regulator has hit retail giant Carrefour with a $3.7 million fine for violating privacy laws, including GDPR.

Privacy

Privacy GDPR Retail IT

Passwordless Authentication without Secrets!

Thales Cloud Protection & Licensing

OCTOBER 11, 2024

However, industries reliant on shared devices—such as healthcare, retail, and manufacturing—face unique challenges. Similarly, in retail and manufacturing, delays caused by authentication procedures reduce overall efficiency. These fast-paced environments need a more flexible approach to balance security, speed, and user privacy.

Authentication

Authentication Retail Manufacturing Passwords

Retail in 2019 needs security precautions

Thales Cloud Protection & Licensing

DECEMBER 28, 2018

As the retail industry follows suit with today’s digital transformation, customer expectations are at an all-time high. Retailers are looking to address these demands with interconnected experiences to give customers more personalized and immediate experiences both in-stores and online. The numbers don’t lie.

Retail

Retail Customer Experience Security Data breaches

Did H&M spy on its German employees? Privacy watchdog opens an investigation

Security Affairs

JANUARY 27, 2020

A German p rivacy watchdog is investigating into clothing retailer H&M because it was allegedly spying on its customer service representatives in Germany. Let’s remind that according to EU GDPR law, H&M could face a fine of four percent of global annual sales.

Privacy

Privacy IT Retail GDPR

CGI Client Global Insights: A look at top retail banking trends and priorities

CGI

MARCH 3, 2020

CGI Client Global Insights: A look at top retail banking trends and priorities. Many retail banks have invested in their “plumbing”- implementing digital technologies to deliver the products, services and experiences their customers demand - but many are still running their businesses just as they did before.

Retail

Retail Digital transformation Customer Experience GDPR

The GDPR: Everything you need to know about data controllers and data processors

IT Governance

NOVEMBER 14, 2018

Data controllers and data processors are an integral part of the GDPR. The terms ‘data controller’ and ‘data processor’ have been around for years, but it’s only since the EU GDPR (General Data Protection Regulation) took effect that they’ve been scrutinised. That’s understandable. The basics. Sounds simple enough.

GDPR

GDPR Retail Data collection Personal data

Does your use of CCTV comply with the GDPR?

IT Governance

OCTOBER 3, 2019

You might be surprised to learn that CCTV footage is subject to the GDPR (General Data Protection Regulation). Let’s take a look at the steps you should follow to ensure your video surveillance methods are GDPR-compliant. Let’s take a look at the steps you should follow to ensure your video surveillance methods are GDPR-compliant.

GDPR

GDPR Privacy Personal data Retail

CNIL Adopts Its First Sanction as Lead Supervisory Authority, Fining French Online Shoe Retailer

Hunton Privacy

AUGUST 11, 2020

On August 5, 2020, the French Data Protection Authority (the “CNIL”) announced that it has levied a fine of €250,000 on French online shoe retailer, Spartoo, for various infringements of the EU General Data Protection Regulation (“GDPR”). As part of its activities, the company operates a website that is accessible in 13 EU countries.

Retail

Retail GDPR IT Personal data

GDPR – the facts and what it means for the retail sector

IT Governance

JUNE 25, 2018

We all know by now that, on 25 May 2018, the General Data Protection Regulation (GDPR) came into effect. The GDPR is not an IT issue. Despite the benefits of good data management, it was widely acknowledged that many organisations would not be GDPR-compliant on 25 May. GDPR c ompliance is not a choice .

Retail

Retail GDPR IT Compliance

Security Affairs newsletter Round 403 by Pierluigi Paganini

Security Affairs

JANUARY 22, 2023

Every week the best security articles from Security Affairs free for you in your email box. If you want to also receive for free the newsletter with the international press subscribe here. The Irish DPC fined WhatsApp €5.5M

Security

Security Data breaches Retail Ransomware

Retail Privacy Network

Data Matters

FEBRUARY 7, 2020

You are invited to join privacy professionals in the retail sector for topical conversation, learning and networking at the first Retail Privacy Network meeting. This interactive meeting will include hot topics in UK/EU data privacy and cybersecurity with practical case studies on retail industry issues. Registration and Lunch.

Retail

Retail Privacy Data Privacy GDPR

GDPR. Forget bitcoin, data is the new currency of retail

OpenText Information Management

APRIL 4, 2018

On May 25, 2018, the new EU data privacy regulation, known as the General Data Protection Regulation (GDPR), comes into force. For … The post GDPR. Forget bitcoin, data is the new currency of retail appeared first on OpenText Blogs. Shortly after that the sky falls in and the world ends.

Retail

Retail GDPR Data Privacy Privacy

The first anniversary of the GDPR: How a risk-based approach can help you achieve GDPR compliance

Thales Cloud Protection & Licensing

JULY 11, 2019

Since the General Data Protection Regulation (GDPR) took effect on May 25th last year, data protection has become a very hot topic. On May 22, 2019, the European Commission published an infographic on compliance with and enforcement of the GDPR from May 2018 to May 2019 and it is clear that a lot of work still needs to be done.

GDPR

GDPR Compliance Risk Personal data

New German fine: EUR 10.4 million for unlawful CCTV

Data Protection Report

JANUARY 13, 2021

against a mid-size online retailer who allegedly violated the EU General Data Protection Regulation (GDPR) by monitoring their employees using CCTV. AG” (the Retailer) at the end of 2020. AG” (the Retailer) at the end of 2020. The Retailer should, instead, have considered milder measures (e.g.

Retail

Retail GDPR IT Access

GDPR fines are coming and here’s why

IT Governance

APRIL 23, 2019

Stop us if you’ve heard this one before: organisations that fail to meet the requirements of the GDPR (General Data Protection Regulation) face fines of up to €20 million (about £17.3 That’s somewhat understandable, given that no UK organisation has yet been disciplined under the GDPR. GDPR fines expected in June.

GDPR

GDPR Personal data Compliance Retail

DPIAs for retail and hospitality

IT Governance

MARCH 26, 2019

Although DPIAs (data protection impact assessments) are not a new concept, the GDPR (General Data Protection Regulation) now mandates them under certain circumstances. It’s relevant for everyone, including retail and hospitality. Common activities for retail and hospitality requiring DPIAs.

Retail

Retail Risk GDPR Government

The bright side of data privacy compliance: 5 value-driven opportunities for retailers

Thales Cloud Protection & Licensing

AUGUST 30, 2023

The bright side of data privacy compliance: 5 value-driven opportunities for retailers madhav Thu, 08/31/2023 - 05:20 Failing to keep up with data privacy legislations, such as General Data Protection Regulation (GDPR) or the California Consumer Privacy Act (CCPA) can harm a brand’s bottom-line and public reputation. Let’s unpack this.

Retail

Retail Data Privacy Compliance Privacy

Holiday Shopping Readiness: How is Retail Data Security Holding Up?

Thales Cloud Protection & Licensing

NOVEMBER 5, 2024

Holiday Shopping Readiness: How is Retail Data Security Holding Up? Retailers have been prepping for this season all year and are ready to provide a safe, secure, and seamless customer shopping experience. According to the National Retail Federation (NFR), retail sales during 2024 will grow between 2.5% trillion and $5.28

Retail

Retail Security Data breaches Compliance

Connected Customer 360 Profiles for Retail & Luxury Brands

Reltio

JUNE 22, 2020

3 Things Data Innovators at Retail & Luxury Brands Have in Common. Retail and luxury brand leaders may use different terms to describe customers, including “clients” or “guests.” According to Accenture , 71% of retail executives believe digital demographics are expanding the number of ways they deliver products and services.

Retail

Retail MDM Customer Experience Analytics

CCTV and the GDPR – an overview for small businesses

IT Governance

JULY 25, 2018

As of 25 May 2018, organisations that use CCTV to capture images of individuals are processing personal data as defined by the GDPR (General Data Protection Regulation) and must comply with the Regulation’s requirements. You can find more information about GDPR compliance on our website >> Data processing principles (Article 5).

GDPR

GDPR Personal data Privacy Access

How data breaches are affecting the retail industry

IT Governance

AUGUST 21, 2018

What steps will the ICO (Information Commissioner’s Office) take to ensure organisations comply with the recently enforced GDPR (General Data Protection Regulation)? Fashion Nexus – a web development e-commerce company that works closely with a number of retailers – suffered a breach when the personal information of approximately 1.3

Retail

Retail Data breaches GDPR Compliance

FIRST SANCTION OF AN ONLINE SHOES COMPANY BY CNIL ACTING AS A LEAD AUTHORITY FOR SEVERAL INFRINGEMENTS TO GDPR REQUIREMENTS

DLA Piper Privacy Matters

AUGUST 12, 2020

On 28 July 2020, the French Supervisory Authority (the “CNIL”) sanctioned the online shoes retail company, SPARTOO SAS, by a €250,000 fine and an injunction to comply with GDPR within 3 months under penalty for various non-compliances with the GDPR of the personal data processing related to clients, prospects and employees [1].

GDPR

GDPR Personal data Compliance Passwords

The GDPR: A year in review

IT Governance

MAY 23, 2019

A year ago this week, the GDPR (General Data Protection Regulation) took effect, promising to revolutionise information security. In the first half of 2018, it was practically impossible to avoid news stories about the GDPR, the majority of which focused on the potential for hefty administrative fines for non-compliance.

GDPR

GDPR Data breaches Compliance Retail

How to implement the General Data Protection Regulation (GDPR)

IBM Big Data Hub

FEBRUARY 23, 2024

The General Data Protection Regulation (GDPR), the European Union’s landmark data privacy law, took effect in 2018. Even the world’s biggest businesses are not free from GDPR woes. Many businesses find it hard to implement GDPR requirements because the law is not only complex but also leaves a lot up to discretion.

GDPR

GDPR Compliance Personal data Privacy

CNIL Fines Two Companies of the Carrefour Group €3.05 Million for GDPR and Cookie Violations

Hunton Privacy

DECEMBER 1, 2020

million on Carrefour France and a fine of €800,000 on Carrefour Banque for various violations of the EU General Data Protection Regulation (“GDPR”) and Article 82 of the French Data Protection Act governing the use of cookies. Carrefour France and Carrefour Banque are both affiliates of the French retail group, the Carrefour Group.

GDPR

GDPR Personal data Data collection Marketing

Consumer concerns over GDPR should set alarm bells ringing for businesses

Thales Cloud Protection & Licensing

NOVEMBER 16, 2017

Today, putting the letters ‘GDPR’ into Google will generate over 420,000 news articles, some detailing the expected impact of the regulation, and others casting doubt on businesses and their readiness. and Germany to get to grips with what they know about GDPR, and more importantly, what they don’t. A lack of trust.

GDPR

GDPR Data breaches Retail Financial Services

GUEST ESSAY: Leveraging best practices and an open standard to protect corporate data

The Last Watchdog

MARCH 21, 2022

Evolving privacy regulations like the General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA) mean ongoing headaches for cybersecurity, compliance and risk management teams. GDPR requires a designated chief privacy officer (CPO). Regulatory compliance. Understand data protection standards.

Encryption

Encryption Cloud Privacy GDPR

62% of organisations unaware of the GDPR

IT Governance

FEBRUARY 23, 2018

There is an alarming lack of awareness across all industries about the EU General Data Protection Regulation (GDPR) , according to a government survey. As you would expect, larger organisations were more likely to be aware of the GDPR. Preparing for the GDPR. The survey split respondents into businesses and charities.

GDPR

GDPR Compliance Insurance Personal data

These 3 GDPR Requirements You Must Support Today are Nothing Compared With What’s Coming

Reltio

AUGUST 16, 2018

On May 25, 2018 GDPR (General Data Protection Regulation) went into effect. The primary objectives of the GDPR are to give control back to their EU citizens and residents over their personal data, to simplify the regulatory environment for international business, and to unify regulations within the European Union.

GDPR

GDPR MDM Compliance Personal data

70,000 affected in B&Q data breach

IT Governance

JANUARY 25, 2019

Home improvement retailer B&Q has suffered a data breach affecting 70,000 of its… well, not customers, exactly. As the data contains alleged criminal records, it could be considered sensitive information under the GDPR (General Data Protection Regulation). How did it inform the data subjects that their data was being processed?

Data breaches

Data breaches GDPR Passwords Retail

Dixons Carphone faces ?400m fine following biggest online data breach in UK history

IT Governance

JUNE 14, 2018

Little more than three years since its previous security incident, electronics retailer Dixons Carphone has admitted to a data breach compromising 5.9 In a statement released on Wednesday, the retail giant revealed it had identified the colossal breach while it was reviewing its systems and data. The first of the GDPR mega-fines?

Data breaches

Data breaches GDPR Retail Compliance

Keeping Up with New Data Protection Regulations

erwin

APRIL 11, 2019

Keeping up with new data protection regulations can be difficult, and the latest – the General Data Protection Regulation (GDPR) – isn’t the only new data protection regulation organizations should be aware of. For example, many retailers have robust, data-driven e-commerce operations that are international.

GDPR

GDPR Compliance e-Discovery Metadata

GUEST ESSAY: 3 key ingredients to stress-free compliance with data handling regulations

The Last Watchdog

JUNE 14, 2018

The variety of laws and regulations governing how organizations manage and share sensitive information can look like a bowl of alphabet soup: HIPAA, GDPR, SOX, PCI and GLBA. Customer data that’s segregated is easily located and efficiently transferred or deleted, both requirements for compliance with GDPR.

Compliance

Compliance Encryption GDPR Cloud

Subject Access Requests in Scotland: Do you know what data is held about you?

IT Governance

NOVEMBER 12, 2018

The impact of the GDPR (General Data Protection Regulation) in Scotland is greater than most realise. One of the rights amended by the GDPR is the right of access. In Scotland, this will impact most significantly on sectors such as banking and retail however other key organisations in Scotland will also be affected.

Access

Access GDPR Personal data Retail

Don’t let bad data drag you down: A retailer’s guide

Collibra

APRIL 11, 2023

Retail is a dynamic and competitive market. In addition to the traditional brick-and mortar-stores, the retail business today includes online and mobile stores. The right kind of data can drive great innovations in retail. This blog outlines what bad data means and how you can stop it from hurting your retail business.

Retail

Retail Marketing Compliance Sales

Has the cause of the BA data breach been identified?

IT Governance

SEPTEMBER 12, 2018

Magecart is known to attack online retailers across the globe using malicious JavaScript, so the BA breach seems to chime with its modus operandi, although we may have to wait several months for the formal investigations to be completed. Likely long term implications for BA. 92% of UK organisations breached.

Data breaches

Data breaches GDPR Retail Security

Shopping safely over Black Friday and Cyber Monday

IT Governance

NOVEMBER 14, 2018

Black Friday and Cyber Monday are almost upon us, kickstarting what retailers hope will be a successful trading period. However, retailers offering both a physical and digital presence stand to gain the most, as the omnichannel approach is favoured by 69% of UK-based survey respondents.

Retail

Retail Personal data GDPR Risk

Data controller vs data processor: what’s the difference?

IT Governance

AUGUST 19, 2020

The concept of data controllers and data processors has been around for years, but the roles come with clearly defined responsibilities under the GDPR (General Data Protection Regulation). Say, for example, that you are a marketing executive at a retailer who wants to conduct a survey on shoppers’ browsing habits. Privacy as a Service.

GDPR

GDPR Personal data Compliance Privacy

More than half of consumers would consider legal action if their data was compromised during a breach

Thales Cloud Protection & Licensing

NOVEMBER 26, 2018

Six months on from the legal implementation of the General Data Protection Regulation (GDPR), a third of consumers have admitted they still aren’t confident that the companies they interact with comply with the regulation. A quarter (25%) of people in both regions revealed that they could not explain the GDPR in any way. Ready or not.

GDPR

GDPR Data breaches Retail Manufacturing

Germany: New 35 million fine for breaching employee privacy

Data Protection Report

OCTOBER 5, 2020

million under the GDPR against the German subsidiary of the fashion retailer H&M. On 1 October 2020, the State Commissioner for Data Protection and Freedom of Information (Landesbeauftragte für Datenschutz und Informationsfreiheit) of Hamburg (the DPA) imposed a fine of EUR 35.3

Privacy

Privacy Retail Data collection GDPR

Data Subject Access Requests – High Court dismisses claim where DSAR regime abused

DLA Piper Privacy Matters

JANUARY 15, 2021

In late 2019, the Claimant issued proceedings and sought various relief, including in connection with an allegation that the Defendant had failed to provide data, contrary to the Data Protection Act 2018 ( “DPA 18” ) and the General Data Protection Regulation (EU) 2016/679 ( “GDPR” ). In each case, the answer had been adequate.

Access

Access GDPR Personal data Retail

German laptop retailer fined €10.4m under GDPR for video-monitoring employees

Clothing Retailer H&M Told to Wear $41 Million GDPR Fine

Webinars

Trending Sources

Amazon Hit With $885 Million GDPR Fine

Webinars

Bad Cookies: Privacy Regulator Fines Supermarket Giant

Passwordless Authentication without Secrets!

Retail in 2019 needs security precautions

Did H&M spy on its German employees? Privacy watchdog opens an investigation

CGI Client Global Insights: A look at top retail banking trends and priorities

The GDPR: Everything you need to know about data controllers and data processors

Does your use of CCTV comply with the GDPR?

CNIL Adopts Its First Sanction as Lead Supervisory Authority, Fining French Online Shoe Retailer

GDPR – the facts and what it means for the retail sector

Security Affairs newsletter Round 403 by Pierluigi Paganini

Retail Privacy Network

GDPR. Forget bitcoin, data is the new currency of retail

The first anniversary of the GDPR: How a risk-based approach can help you achieve GDPR compliance

New German fine: EUR 10.4 million for unlawful CCTV

GDPR fines are coming and here’s why

DPIAs for retail and hospitality

The bright side of data privacy compliance: 5 value-driven opportunities for retailers

Holiday Shopping Readiness: How is Retail Data Security Holding Up?

Connected Customer 360 Profiles for Retail & Luxury Brands

CCTV and the GDPR – an overview for small businesses

How data breaches are affecting the retail industry

FIRST SANCTION OF AN ONLINE SHOES COMPANY BY CNIL ACTING AS A LEAD AUTHORITY FOR SEVERAL INFRINGEMENTS TO GDPR REQUIREMENTS

The GDPR: A year in review

How to implement the General Data Protection Regulation (GDPR)

CNIL Fines Two Companies of the Carrefour Group €3.05 Million for GDPR and Cookie Violations

Consumer concerns over GDPR should set alarm bells ringing for businesses

GUEST ESSAY: Leveraging best practices and an open standard to protect corporate data

62% of organisations unaware of the GDPR

These 3 GDPR Requirements You Must Support Today are Nothing Compared With What’s Coming

70,000 affected in B&Q data breach

Dixons Carphone faces ?400m fine following biggest online data breach in UK history

Keeping Up with New Data Protection Regulations

GUEST ESSAY: 3 key ingredients to stress-free compliance with data handling regulations

Subject Access Requests in Scotland: Do you know what data is held about you?

Don’t let bad data drag you down: A retailer’s guide

Has the cause of the BA data breach been identified?

Shopping safely over Black Friday and Cyber Monday

Data controller vs data processor: what’s the difference?

More than half of consumers would consider legal action if their data was compromised during a breach

Germany: New 35 million fine for breaching employee privacy

Data Subject Access Requests – High Court dismisses claim where DSAR regime abused

Stay Connected