Enforcement And Fines Under The GDPR
Published 2017 · Business
As regards enforcement, the GDPR introduces significant changes in comparison to the Data Protection Directive. The Supervisory Authorities have the task to ensure compliance with the GDPR and, to be able to fulfil these tasks, have various investigative and corrective powers. The most severe form of sanctioning from a company perspective will be administrative fines. Their maximum amount has been increased to up to EUR 20,000,000.00 or up to 4% of the total worldwide turnover. Apart from administrative sanctions, entities might have to pay compensation to data subjects. In this regard, it should be noted that, for the first time, the processor will be facing its own civil liability for infringements of the GDPR. This chapter emphasises on the tasks and powers of the Supervisory Authorities, civil liability, administrative sanctions, as well as available judicial remedies.