France’s data protection regulator, CNIL, issued Google a fine of $ 50 million (about $ 56.8 million) for failing to meet its GDPR obligations. This is the largest GDPR fine that will still be issued by a European regulator and for the first time one of the technology giants is found to be unable to cope with the rigorous new regulations in force last May. .
CNIL said the fine was issued because Google failed to provide enough information to its users about its data authorization policy and did not give them enough control over how their information was used. According to the regulator, these violations are still rectified by the search giant. Under GDPR, companies need to get the ‘right permission’ from the user before they collect their information, which means that permission becomes an explicit opt-in process that can easily be withdrawn for people.
Although the €50 million fine seems large, it’s small compared to the maximum limits allowed by GDPR, which allows a company to be fined a maximum of four percent of its annual global turnover for more serious offenses. For Google, which made $33.74 billion in the last quarter alone, that could result in a fine in the billions of dollars. The search giant did not immediately respond for a request for comment on the fine.