Korean Companies Need to Be Cautious of Violating European GDPR Privacy Regulations
Foreign Companies Also Subject to the Same Rules Without Exception
[Asia Economy Reporter Hwang Yoon-joo] As the European Union's (EU) General Data Protection Regulation (GDPR) passes its second year of enforcement, sanctions against violating companies are rapidly increasing, requiring caution from our companies.
According to the 'EU GDPR Violation Cases and Corporate Precautions' report released on the 12th by the Korea International Trade Association Brussels Office, since the GDPR enforcement in May 2018 until May of this year, the number of fines imposed by EU countries on companies violating the GDPR reached 273 cases, with a cumulative amount of 150 million euros over two years.
By country, Spain (81 cases), Romania (26 cases), and Germany (25 cases) had the most imposed cases, while by amount, France (51.1 million euros), Italy (39.4 million euros), and Germany (25.1 million euros) ranked highest. Reasons for fines included insufficient legality in personal data processing (105 cases), inadequate technical and managerial protective measures (63 cases), and deficiencies in personal data processing principles (41 cases).
France imposed a fine of 50 million euros on Google for lack of transparency in personal data processing and violations of data subjects' rights to access information. Italy fined its domestic telecommunications company TIM 27.8 million euros for conducting telemarketing without consumer consent and failing to obtain consent for data usage purposes. Austria Post, British Airways, and Marriott UK also received fines for unauthorized collection, use, and leakage of personal data.
The report stated, "In case of GDPR violations, not only fines but also significant damages such as changes in business practices and loss of customer trust occur. Therefore, it is necessary to familiarize with key violation clauses, allocate sufficient budget and personnel, and strive for compliance." It added, "If any suspected violation occurs, promptly reporting to supervisory authorities and actively cooperating with investigations helps in determining whether fines are imposed and their amounts."
Hot Picks Today
!["Rather Than Endure a 1.5 Million KRW Stipend, I'd Rather Earn 500 Million in the U.S." Top Talent from SNU and KAIST Are Leaving [Scientists Are Disappearing] ①](https://cwcontent.asiae.co.kr/asiaresize/93/2026051914165468840_1779167814.png)
"Rather Than Endure a 1.5 Million KRW Stipend, I'd Rather Earn 500 Million in the U.S." Top Talent from SNU and KAIST Are Leaving [Scientists Are Disappearing] ①
- "Not Jealous of Winning the Lottery"... Entire Village Stunned as 200 Million Won Jackpot of Wild Ginseng Cluster Discovered at Jirisan
- "I'll Stop by Starbucks Tomorrow": People Power Chungbuk Committee and Geoje Mayoral Candidate Face Criticism for Alleged 5·18 Demeaning Remarks
- Woman Experiences Eye Protrusion After 20 Years of Contraceptive Injections, Plans Lawsuit Against Major Pharmaceutical Company
- "How Did an Employee Who Loved Samsung End Up Like This?"... Past Video of Samsung Electronics Union Chairman Resurfaces
Kang No-kyung, Deputy Manager of the Korea International Trade Association Brussels Office, emphasized, "Companies that have been fined treat the EU GDPR as a major business risk in their annual reports and are strengthening compliance monitoring obligations. Since our companies are no exception, systematic and sustainable responses to GDPR compliance are necessary."
© The Asia Business Daily(www.asiae.co.kr). All rights reserved.
