Cullen International’s new benchmark shows that data protection authorities in half of the 16 surveyed European countries imposed fines on big tech companies for either General Data Protection Regulation (GDPR) or e‑Privacy Directive (ePD) infringements since the entry into application of the GDPR in May 2018.
The benchmark shows that Luxembourg is the country with the highest sum of fines imposed with €746m, followed by Ireland and France.
Amazon, WhatsApp and Google are the big tech companies which incurred in the highest sum of fines at €781m, €225m and €155.7m respectively.
The benchmark also looks at whether, in the event of GDPR infringement in multiple EU member states, big tech companies benefitted from the cooperation and consistency mechanism introduced by the GDPR. The mechanism aims to achieve the consistent application of the GDPR throughout the EU.
For more information and access to the benchmark, please click on “Access the full content” - or on “Request Access”, in case you are not subscribed to our European Digital Economy service.
more news
01 September 25
Regulating submarine cable infrastructure
Our new Global Trends benchmark analyses key aspects of policies and regulations on submarine cable infrastructure in the telecoms sector. The research covers 16 jurisdictions around the world: Australia, Brazil, China, Egypt, the EU, India, Indonesia, Japan, Kenya, Korea, Nigeria, Peru, Singapore, South Africa, the UK, and the US.
27 August 25
5G developments and other regulatory news in the Middle East and North Africa
Our latest MENA Telecoms Update details the most significant regulatory developments taking place in the region between 30 April and 11 August 2025.
14 August 25
Fighting online piracy in Brazil
The latest edition of Cullen International's Fighting Online Piracy benchmark shows that Brazil’s audiovisual sector regulator Ancine and its telecoms regulator Anatel have agreed in writing to collaborate in the fight against the online piracy of media content.