Data acquired by Finbold indicates that as of Q1 2021, EU countries were fined €33.61m in GDPR fines for various violations.
Spain was the hardest-hit country, with regulators imposing €15.7m in fines from a total of 34 cases. Germany ranks second with fines amounting to €10.7m from just three cases. Interestingly, the two countries accounted for 78.53% of the total fines.
Italy ranks third with fines amounting to €5.6m with 20 violation cases, while the Netherlands is fourth with €440,000 from a single issue.
Norway ranks fifth with €382,750 in fines from 12 cases. In the sixth spot, there is France with three cases that attracted €245,000 in fines. Czech Republic’s single case drew penalties amounting to €118,500.
Belgium’s four cases led to €86,000 in penalties, followed by Poland at five cases with fines totaling €81,300. Finally, Cyprus caps the top ten most fined countries with four cases at €81,000.
High fines indicate European regulators commitment to hold organizations accountable
The report explains why the fines are significant, considering the GDPR law is still new.
According to the research report: “The significant amount of the GDPR fines highlights the increasing ability by European regulators to use their enforcement authority in implementing the law that came into use less than three years ago. The imposed high fines point to improved ability to detect instances of personal data violation. Also, the spotting of violation cases has been improved since the law grants more control to consumers who are the most affected.”
Elsewhere, January recorded the highest number of fines at €17.5m. The figure dropped by a massive 90.28% in February to €1.7m. However, the fines sharply rose to €14.29m as of March.