The Swedish Authority for Privacy Protection (IMY) has imposed a fine of 12.3 million SEK (€1 million/USD 1.1 million) on two companies for utilizing Google Analytics. Additionally, two other companies were cautioned about the same practice.
In their recent decision, the regulatory agency stated that these organizations violated the General Data Protection Regulation (GDPR) of the European Union. The infringement pertained to Article 46(1) of the GDPR, which prohibits the transfer of personal data to countries or international organizations lacking sufficient safeguards for ensuring safety and legal remedies.
The United States has been identified as a risky location for storing data of European users following the “Schrems II” judgment by the Court of Justice of the European Union (CJEU) in July 2020. This ruling deemed data transfers to the U.S. under the previously established framework “Privacy Shield” illegal.
Read More: Google Analytics data transfer to U.S. brings $1 million fine to Swedish firms
For more such updates follow us on Google News ITsecuritywire News. Please subscribe to our Newsletter for more updates.