European Union regulators have issued about $1.72 billion in fines for violations of the EU’s General Data Protection Regulation (GDPR) since its effective date in May 2018.
The top five?
- Amazon Europe: $798 million
- WhatsApp: $240.7 million
- Google: $96.3 million
- Facebook Ireland: $64.2 million
- Google: $64.2 million
“It’s not uncommon for GDPR and CCPA breaches to stem from either insecure or illegal measures to properly safeguard personal data or a failure to continuously monitor security controls, and oftentimes it’s a combination of both,” said Troy Fine, senior manager of cybersecurity, risk management and compliance at Drata.