Swedish Court Hits Spotify with $6.1 Million Fine for GDPR Breaches
Spotify must pay more than $6 million for processing personal data in violation of the General Data Protection Regulation (GDPR), Sweden's Administrative Court of Appeal in Stockholm said Tuesday.
Sign up for a free preview to unlock the rest of this article
Privacy Daily provides accurate coverage of newsworthy developments in data protection legislation, regulation, litigation, and enforcement for privacy professionals responsible for ensuring effective organizational data privacy compliance.
The court found Stockholm-based Spotify infringed the GDPR by failing to provide clear and easily available information necessary for data subjects to protect their rights; not giving users information on how long their data would be retained; and not providing sufficient information on what safeguards it used to transfer personal data to third countries or an international organization. The court fined the music-streaming provider $6.1 million (58 million krona).