GDPR Gets Personal: Fines, Class Actions, and Data Transfer Rules
Data breach fines are determined by violations such as failure to report breaches, inadequate security, unlawful data transfers, and insufficient privacy notices, and can reach up to 4% of a company’s global annual revenue, with increasing focus on personal liability and class action lawsuits for non-compliance with regulations like the GDPR
🎧 Listen to this Episode
Show Notes
This episode examines recent trends in GDPR enforcement, including the shift towards personal liability for management, the rise of class action lawsuits, and the importance of compliant data transfer mechanisms. We'll discuss how the EU court's recent award of damages for illegal data transfers without material loss could lead to significant legal challenges. Learn how to protect your organization from heavy penalties and safeguard user data.
Share this episode
Enjoying CISO Insights?
Subscribe to get new episodes delivered directly to your podcast app.
Related Episodes
Navigating the 2026 AI Divide: Voluntary Frameworks and Binding Laws
Discover how the U.S. government’s voluntary, national security-focused AI executive order creates a complex compliance collision for enterprises balancing strict, mandatory state and European regulat...
▶️ Listen Now
The Global Privacy Horizon: AI Governance and Data Security in 2026
This podcast provides a comprehensive overview of the 2026 global privacy landscape, highlighting how new AI compliance deadlines, stringent child safety laws, and advanced Privacy-Enhancing Technolog...
▶️ Listen Now
The Privacy Paradox: Control, Fatigue, and the Future of Our Data
This episode unpacks New Zealand’s 2026 privacy landscape, exploring the tension between a growing demand for data protection against rising privacy fatigue, AI anxieties, and a unified public cry for...
▶️ Listen Now