oh yes. a fine of 4 percent of 20 mil is something that can make small timers go completely out of business. I do understand that because i have sat with my organization's meeting to device better policies that are gdpr compliant. and it's not just us. when we sat down for that, we saw our competitors doing the same thing, huge brands and giants like facebook, twitter, google and others and even medium scale businesses like ivacy vpn and hotjar are turning things around. we're monitoring them and a dozen others just to make sure our team gets it right and come may 25th, we don't get hit by any mammoth penalty.
Here's a venture capital funded organisation who was handled sensitive personal data of many people. They had a legal requirement to register with the English Information Commisioner under existing DPA law. They didn't register.
> Infringments of the following provisions shall, in acccordance with paragraph 2, be subject to administrative fines up to 10 000 000 EUR, or in the case of an undertaking, up to 2% of the total worldwide annual turnover of the preceding financial year, whichever is higher:
Section 5:
> Infringements of the following provisions shall, in accordance with paragraph 2, be subject to administrative fines up to 20 000 000 EUR, or in the case of an undertaking, up to 4% of the total worldwide annual turnover of the preceding financial year, whichever is higher:
[+] [-] TheMechanix|7 years ago|reply
[+] [-] DanBC|7 years ago|reply
What fine do you think they got?
(penultimate para) https://www.bloomberg.com/news/articles/2018-04-26/u-k-healt...
Big fines are reserved for the worst incompetent or deliberate repeated failure.
[+] [-] DanBC|7 years ago|reply
[deleted]
[+] [-] iffycan|7 years ago|reply
From http://data.consilium.europa.eu/doc/document/ST-5419-2016-IN...
Article 83:
Section 4:
> Infringments of the following provisions shall, in acccordance with paragraph 2, be subject to administrative fines up to 10 000 000 EUR, or in the case of an undertaking, up to 2% of the total worldwide annual turnover of the preceding financial year, whichever is higher:
Section 5:
> Infringements of the following provisions shall, in accordance with paragraph 2, be subject to administrative fines up to 20 000 000 EUR, or in the case of an undertaking, up to 4% of the total worldwide annual turnover of the preceding financial year, whichever is higher: