GDPRAdvertisingHigh Severity

Specialized Web Advertising Targeting Company

€40,000,000

Authority

CNIL

Country

France

Date Issued

June 15, 2023

Industry

Advertising

Summary

The CNIL fined this web advertising company €40 million for multiple GDPR violations including failing to obtain proper consent for targeted advertising, inadequate transparency about data processing, and not respecting data subject rights such as access and erasure requests. The enforcement action also addressed failures in joint data controller relationships.

Violation Types

ConsentTransparencyData Subject Rights

Articles Violated

View original enforcement decision

Related Enforcement Actions

Meta Platforms Ireland

DPC · GDPR · May 22, 2023

€1.2B

Amazon Europe Core

CNPD · GDPR · July 16, 2021

€746M

X Corp

DPC · GDPR · December 1, 2023

€550M

Meta Platforms Ireland

DPC · GDPR · September 5, 2022

€405M

Meta Platforms Ireland

DPC · GDPR · January 4, 2023

€390M

Avoid enforcement risk with automated compliance

IQWorks helps organizations automate GDPR compliance before regulators come knocking.

Talk to an Expert