65000 GDPR Data Breaches In Europe To Date

European privacy authorities have received almost 65,000 data breach notifications since the EU's new privacy law went into full effect. In addition, regulators in 11 European countries have imposed $63 million in General Data Protection Regulation fines.


This is according to a new European Data Protection Board report that provides the "first overview on the implementation of the GDPR and the roles and means of the national supervisory authorities," or SAs.


The Brussels-based EDPB is an independent European body, created as part of GPDR, which launched on the same day as the start of the regulation's enforcement: May 25, 2018. The EDPB's mandate is to ensure that data protection rules get applied consistently throughout the EU, as well as encourage the EU's data protection authorities to cooperate.


The report draws on data provided by many countries in the European Economic Area, which includes all 28 EU member states as well as Iceland, Liechtenstein and Norway, which also comply with GDPR.


Data in the report covers the first nine months of GDPR has gone into full effect. "The total number of [GDPR] cases reported by SAs from 31 EEA countries is 206,326," the report says.


Such cases include complaints. Under article 77 of GDPR - "Right to complain to a supervisory authority" - Europeans can file complaints with regulators about organizations' data protection practices, as they were also able to do before the enactment of the new regulation.


Such cases also include data breach notifications. Among its provisions, GDPR requires organizations that suffer a breach that may have exposed Europeans' personal information to notify relevant authorities.


"The majority of the cases are related to complaints, notably 94,622, while 64,684 were initiated on the basis of data breach notification by the controller," the EDPB report says. Of these cases, 52 per cent have been closed and one per cent are the subject of lawsuits before national courts.

more news

Cyberattacks: Preparing For The Inevitable


It is generally accepted that it is when, not if, large organisations will be the target of malicious cyberattacks. The importance of being prepared has been laid out in a blog post Sweat In Peace, Don't Bleed In War, written by Meredydd Hughes, a former UK chief constable with substantial crisis management experience.

read more

Varonis Blog Highlights 110 Cybersecurity Statistics


Cybersecurity company Varonis has issued its predictions for the forthcoming year with a blog post entitled 110 Cybersecurity Statics For 2020. The blog states that cybersecurity issues are becoming a day-to-day struggle for businesses. Recent trends and cybersecurity statistics reveal a huge increase in hacked and breached data from sources that are increasingly common in the workplace, like mobile and IoT devices.

read more

UK To Go On The Cyber Offensive


The UK Government is about to launch a new proactive and offensive cybersecurity team that will wage cyberwarfare against hostile nation-states and online crime organisations. It would be naive to believe that the UK has not launched cyberattacks against third parties, but the killing of Qassem Soleimani has brought this out into the open.

read more

Are You Ready For Iranian Revenge Cyberattacks?


Following the killing of Qassem Suleimani no-one can be sure of what military action Iran will take, but experts agree that its cyberattacks will increase against countries and governments it sees as hostile.

read more