Submit a new fine
Want to share with us a fine which we have not yet included in the list? Feel free to submit it here.
Please note that we only list GDPR fines, i.e. no fines imposed under (1) national / non-European laws, (2) non-data protection laws (e.g. competition laws / electronic communication laws) and (3) "old" pre-GDPR-laws.
. Adding a link to the source of the fine is mandatory, all other details support us in adding the fine to the database as quick as possible.
Thank you for your input!
Fine Models by DPAs
[x] Remove all filters
Filter by country:
Filter by violation (Art.):
Enforcementtracker: New features and improved design!
Unique "ETID" and "Direct URL" to better address and share specific fines as well as allocation of sectors to fines.
UK: Fine against British Airways finally set
Fine against British Airways for inadequate security measures finally set at approx. EUR 22 million (reduction from initially proposed EUR 202 million).
Germany: New fine in the amount of EUR 35 million
New fine on H&M Hennes & Mauritz Online Shop A.B. & Co. KG for collecting and storing private employee data
GDPR Enforcement Tracker
The CMS.Law GDPR Enforcement Tracker is an overview of fines and penalties which data protection authorities within the EU have imposed under the EU General Data Protection Regulation (GDPR, DSGVO). Our aim is to keep this list as up-to-date as possible. Since not all fines are made public, this list can of course never be complete, which is why we appreciate any
indication of further GDPR fines and penalties
Please note that we do not list any fines imposed under national / non-European laws, under non-data protection laws (e.g. competition laws / electronic communication laws) and under "old" pre-GDPR-laws.
[x] Reset filter and go to all fines