Cullen International’s new benchmark shows that data protection authorities in half of the 16 surveyed European countries imposed fines on big tech companies for either General Data Protection Regulation (GDPR) or e‑Privacy Directive (ePD) infringements since the entry into application of the GDPR in May 2018.
The benchmark shows that Luxembourg is the country with the highest sum of fines imposed with €746m, followed by Ireland and France.
Amazon, WhatsApp and Google are the big tech companies which incurred in the highest sum of fines at €781m, €225m and €155.7m respectively.
The benchmark also looks at whether, in the event of GDPR infringement in multiple EU member states, big tech companies benefitted from the cooperation and consistency mechanism introduced by the GDPR. The mechanism aims to achieve the consistent application of the GDPR throughout the EU.
For more information and access to the benchmark, please click on “Access the full content” - or on “Request Access”, in case you are not subscribed to our European Digital Economy service.
more news
30 June 25
LTE and 5G in the 410–430 MHz and 450–470 MHz bands in Europe
Our latest European benchmark shows the countries where the 410–430 MHz or 450–470 MHz bands can be used for LTE or 5G.
27 June 25
Can European end users choose their own router or modem?
Our new benchmark research shows that national regulators clearly defined the network termination point in five of the 14 European countries studied.
26 June 25
Data Protection in the Americas
Recent research highlights contrasts in the enforcement of data protection laws across the Americas. While most countries have legal frameworks in place to penalise violations, the scale of fines—both in terms of maximum fine limits and actual enforcement—varies widely. The findings also reveal that fines imposed in Europe are often significantly higher than those recorded in the Americas.