1、CRS Legal Sidebar Prepared for Members and Committees of Congress Legal SidebarLegal Sidebari i Google Fined for Violation of EU Data Protection Law February 22, 2019 In a decision testing what it means to give informed consent to online data collection, a French regulatory body recently fined Googl
2、e LLC (Google) 50 million euro (approximately 56 million U.S. dollars) the largest fine issued to date for violating the European Unions (EUs) General Data Protection Regulation (GDPR). Discussed in this CRS In Focus, the GDPR is an EU law that provides rules for protection of personal data througho
3、ut the 28-member European Union. The French data protection authoritythe Commission Nationale de linformatique et des Liberts (CNIL)concluded that Googles lack of transparency and failure to obtain valid consent from Android phone users violated the GDPR. Although the fine arose under EU law (and Go
4、ogle has announced plans to appeal it), the decision could offer lessons for recent congressional efforts to craft more comprehensive federal data privacy policy. What is the GDPR? In effect since May 2019, the GDPR provides data protection rules in several interrelated areas: data privacy (i.e., ho
