Luca Tosoni and Dan Cooper write:
On 2 February 2017, the Italian DPA (“Garante”) imposed a record fine of 5,880,000 Euros on a UK company operating in Italy for its violation of the data privacy consent rules contained in Italian law. This is the largest data privacy fine ever issued by a European data protection authority for a breach of the EU’s data protection framework.
The Garante imposed the fine on a company that allegedly made money transfers to China on behalf of individuals without their knowledge or agreement, and therefore did not obtain the individuals’ consent to the processing of their data.
Read more on Covington & Burling Inside Privacy.
Sigue Global Service Ltd. is one of five firms fined. The others were Yume Ltd, Marc 1, Sirama Ltd, and Euro Communication System. Details of the fines for each are linked from the press release announcing the fines.