French watchdog fines Carrefour 3 millon euros for privacy rule breaches
French watchdog CNIL has fined two of Carrefour's subsidiaries a total of 3.05 million euros ($3.63 million) for breaching European Union data privacy rules, it said on Thursday.
The watchdog said Carrefour France and Carrefour Banque, the French retailer's financial services subsidiary, had failed to properly inform internet users about loyalty programmes and credit card applications on their respective websites.
It said information was also lacking on how long Carrefour France intended to keep customers' personal data. The initial data retention period of four years was deemed excessive by the watchdog.
The data privacy authority also found that Carrefour France didn't make it easy for customers to see personal data collected from them by the company, one of the EU's General Data Protection Regulation (GDPR) requirements.
The CNIL noted that Carrefour had made changes to its online procedures to be fully compliant with current privacy rules, including to the online trackers that Carrefour had saved without the user's prior consent.
The watchdog also said Carrefour had met all the requests from people who asked to have access to their personal data, or to have it deleted.
"The CNIL's decision concerns past and isolated failures," Carrefour said on Twitter. "They are now fully corrected."
The watchdog said Carrefour France and Carrefour Banque, the French retailer's financial services subsidiary, had failed to properly inform internet users about loyalty programmes and credit card applications on their respective websites.
It said information was also lacking on how long Carrefour France intended to keep customers' personal data. The initial data retention period of four years was deemed excessive by the watchdog.
The data privacy authority also found that Carrefour France didn't make it easy for customers to see personal data collected from them by the company, one of the EU's General Data Protection Regulation (GDPR) requirements.
The CNIL noted that Carrefour had made changes to its online procedures to be fully compliant with current privacy rules, including to the online trackers that Carrefour had saved without the user's prior consent.
The watchdog also said Carrefour had met all the requests from people who asked to have access to their personal data, or to have it deleted.
"The CNIL's decision concerns past and isolated failures," Carrefour said on Twitter. "They are now fully corrected."
Trending
Government bans AliPay, WeTV, Lalamove India and 40 other ‘Chinese apps’- Elon Musk says Tesla’s Chinese rival ‘stole’ Apple’s code
- Buying a laptop for online classes: What you should know about budget and refurbished options
- iPhone 12: 'made' in Korea, Japan, US and others
- Google, Facebook and Twitter threaten to leave Pakistan over new rules
All Comments (0)+^ Back to Top
Refrain from posting comments that are obscene, defamatory or inflammatory, and do not indulge in personal attacks, name calling or inciting hatred against any community. Help us delete comments that do not follow these guidelines by marking them offensive. Let's work together to keep the conversation civil.
HIDE