• Latest

GDPR Is One Year Old. What’s the Impact?

June 5, 2019
KYC & AML: Know your customer and anti-money laundering explained

KYC & AML: Know your customer and anti-money laundering explained

August 7, 2022
New Podcast Episode: Walls of Thieving Cellphones with Nethone

New Podcast: How Consumers React to Identity Theft and Account Takeover Attacks

August 2, 2022
The Best Reverse Email Lookup Tools in 2022 (with pricing)

The Best Reverse Email Lookup Tools in 2022 (with pricing)

July 28, 2022
Tailgating Attack

Tailgating Attack

July 24, 2022
80 billion Euros lost to online fraud across physical and digital goods, and e-ticketing in 2021, reveals Fraugster’s new Payment Intelligence Report  

80 billion Euros lost to online fraud across physical and digital goods, and e-ticketing in 2021, reveals Fraugster’s new Payment Intelligence Report  

July 20, 2022
Influencer Insights: Christian Mangold, CEO of Fraugster Discusses the Payment Intelligence Report 2022

Influencer Insights: Christian Mangold, CEO of Fraugster Discusses the Payment Intelligence Report 2022

July 20, 2022
New Podcast Episode: Walls of Thieving Cellphones with Nethone

New Podcast: Let’s Get Megan a Job! LinkedIn recruiter scams & how to find work in the fraud prevention industry

July 19, 2022
Reverse Email Lookup to Protect Against Fraud

Reverse Email Lookup to Protect Against Fraud

July 18, 2022
Silverfort Raises $65m Series C for World’s First Unified Identity Threat Protection Platform

The Worldwide eCommerce Fraud Detection & Prevention Industry is Expected to Reach $83.9 Billion by 2026

July 15, 2022
The fraud detection and prevention (FDP) market to surpass $100 billion by 2027

Pre-hijacking Account Takeover Fraud

July 14, 2022
VISA Amends Its Dispute Management Guidelines for Merchants

VISA Amends Its Dispute Management Guidelines for Merchants

July 10, 2022
Amazon Chargeback Mitigation: Recover Your Money Like A Pro

Amazon Chargeback Mitigation: Recover Your Money Like A Pro

July 5, 2022
  • Contribute
  • Contact Us
  • About
  • Join Us
  • Advertise
Thursday, August 11, 2022
Merchant Fraud Journal
  • Home
  • Articles
    • Chargebacks
    • Fraud Prevention
    • Influencer Insights
  • Resources
    • Recorded Webinars
    • Podcasts
    • Vendor Directory
    • eCommerce Fraud Reports
    • Training and Certifications
    • Jobs Board
    • Associations and Non-Profits
  • News
No Result
View All Result
  • Home
  • Articles
    • Chargebacks
    • Fraud Prevention
    • Influencer Insights
  • Resources
    • Recorded Webinars
    • Podcasts
    • Vendor Directory
    • eCommerce Fraud Reports
    • Training and Certifications
    • Jobs Board
    • Associations and Non-Profits
  • News
No Result
View All Result
Merchant Fraud Journal
No Result
View All Result

GDPR Is One Year Old. What’s the Impact?

by Bradley
June 5, 2019
in Articles, Fraud Prevention

Etereuti / Pixabay

Enforcement of the General Data Protection Regulation (GDPR) is one year old. This new pan European Union (EU) legislation is intended to protect consumers’ data by standardizing data capture and storage practices across all businesses operating within the EU. Specifically, it regulates the way companies of a certain size can collect, process, and store consumer data.

But since its inception, the legislation has been a cause of concern for merchants. For starters, the definition of “personal data” under Regulation (EU) 2016/679 encompasses “any information relating to an identified or identifiable natural person”. In other words, anything about anyone.

Statutory Definitions Unclear

Adding to the complication is the fact that the Regulation threatens large penalties for data breaches. Specifically, it establishes the possibility of eight-figure fines, or in the worst cases, even entire percentages of revenue:

Non-compliance with an order by the supervisory authority as referred to in Article 58(2) shall, in accordance with paragraph 2 of this Article, be subject to administrative fines up to 20 000 000 EUR, or in the case of an undertaking, up to 4 % of the total worldwide annual turnover of the preceding financial year, whichever is higher.

Adding to the trifecta of misery is the amazingly vague definition of what constitutes a data breach. The text defines it as “a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data transmitted, stored or otherwise processed”. Again, a definition that encompasses almost anything.

Finally, each individual EU member state is empowered to interpret the law as they see fit. All told, there was a lot of uncertainty about how the Regulation would play out in practice. One year on, the outlines of what we can expect moving forward have already begun to take shape.

Unfortunately, the European Data Protection Board (EDPB) does not have any uniform standards for how member states must report data. That makes it difficult to gauge the impact. However, the implementation reports published by the EDPB give some indication. The reports show EU citizens made nearly 100,000 complaints since May 2018. That number includes almost 65,000 claimed data breaches.

GDPR Penalties So Far

One year on, it appears fears of the ambiguity and large compliance fines is warranted. National governments imposed hundreds of fines on companies for a variety of violations, including:

  • €80,000 for publishing personal health data onto the internet
  • €20,000 for not hashing stored passwords
  • €50,000,000 for unauthorized processing of personal data (by Google)

In addition, the European Data Protection Board (EDPB) recently published information about the scope and size of fines. The first heading of the text ominously reads “expect more GDPR fines in 2019.” It goes on to tout that Poland levied its first fine of €220,000 for public data scraping. The message that the regulation is here to stay is clear.

What Is the Future of GDPR?

Which raises the question of where we go from here. GDPR’s goal is to harmonize the law between all EU countries. This is in the best interests of individuals and companies. In fact, Article 63 of the Regulation states:

“In order to contribute to the consistent application of this Regulation throughout the Union, the supervisory authorities shall cooperate with each other and, where relevant, with the Commission, through the consistency mechanism as set out in this Section.”

However, it’s already obvious that different member states will levy fines differently. A board does exist to eliminate ambiguity, but it’s unclear what practical effect it will have. There is already a huge discrepancy in the size of fines and level of scrutiny. It is clear it will be a long time before all of the ambiguity is eliminated.

It is encouraging that clarity this is one of the stated goals for the future. In addition to closer cooperation and communication, the EDPD recently stated:

“Another opportunity is to adopt consistency opinions and decisions. These decisions mainly address the national supervisory authorities and ensures a consistent application and enforcement of the GDPR.”

It will take time for this to materialize. Hopefully, reporting will be more systematic and robust in the near future. It will also be helpful if member states communicate between one another and standardize their interpretations of the law.

Whatever form it takes, the hope is year two of GDPR will bring more clarity. In the meantime, businesses must continue to do their best to protect consumer data from account takeovers and other attacks.

Tags: GDPR
ShareTweetShareSend
Previous Post

BalBix Releases New Report: How to Use AI to Tackle Cyber-Security Challenges

Next Post

PayPal Commerce Platform Launches

Next Post

PayPal Commerce Platform Launches

Our Sponsors

Our Latest Report

Get the 2022 Fraud Trends Report

MFJ 2022 Fraud Trends Report

Search Our Site

No Result
View All Result

Featured Directory Listings

  • PayRetailers
  • logo
    NoFraud
  • Microsoft Dynamics 365 Fraud Protection
  • Ekata
  • Spotrisk
  • Pipl
  • sift logo
    Sift
  • nSure.ai logo
    nSure.ai
  • SEON. Fraud Fighters

Our Sponsors

Fraud Industry News

KYC & AML: Know your customer and anti-money laundering explained

KYC & AML: Know your customer and anti-money laundering explained

August 7, 2022
New Podcast Episode: Walls of Thieving Cellphones with Nethone

New Podcast: How Consumers React to Identity Theft and Account Takeover Attacks

August 2, 2022
The Best Reverse Email Lookup Tools in 2022 (with pricing)

The Best Reverse Email Lookup Tools in 2022 (with pricing)

July 28, 2022

Connect With Us

Quick Navigation

  • Home
  • News
  • Join Us
  • About Us
  • Contact Us
  • Advertise
  • Contribute
  • Privacy Policy

Privacy Policy

Our Privacy Policy
Our Terms of Use

Resources

  • Articles
  • eCommerce Fraud Reports
  • eCommerce Fraud Webinars
  • Training and Certifications
  • Jobs Board
  • Associations and Non-Profits
  • Podcasts
  • Vendor Directory

Popular Posts

  • How Does Two-Factor Authentication (2FA) Work?

    How Does Two-Factor Authentication (2FA) Work?

    0 shares
    Share 0 Tweet 0
  • How to File a Claim With FedEx + What To Do If Claim is Denied

    0 shares
    Share 0 Tweet 0
  • Top eCommerce Fraud Prevention Companies

    0 shares
    Share 0 Tweet 0
  • How to Fight PayPal Chargeback Fraud

    0 shares
    Share 0 Tweet 0

Featured Vendors

  • Pipl
  • NoFraud
  • nSure.ai
  • Ekata
  • PayRetailers
  • Microsoft Dynamics 365 Fraud Protection
  • SEON. Fraud Fighters
  • Spotrisk
  • Sift

Download the 2022 Fraud Trends Report

No Result
View All Result
  • About Merchant Fraud Journal
    • Advertise on Merchant Fraud Journal
    • Interested in Contributing or Guest Posting to Merchant Fraud Journal?
  • Articles
    • Chargebacks
    • Fraud Prevention
    • Influencer Insights
  • Contact Us
  • Download Addressing Payment Fraud and Customer Experience Report
  • Download Evolving Complexities of Payment Fraud Report
  • Download the 2020 Chargeback and Representment Report
  • Download the 2020 Merchant Fraud Journal Vendor Guide
  • Download the 2021 Fraud Trends Report
  • Download the 2022 Fraud Trends Report
  • Download the 3 Ways a Unified Chargeback Management and Fraud Platform Increases Revenue Report
  • Download the MFJ 2022 Customer Experience Report
  • Download the MFJ ATO in Retail Report
  • Home
  • Job Dashboard
  • Join The Merchant Fraud Journal Community
  • Merchant Fraud Journal Advertising Agreement
  • MFJ Fraud Trends Report Giveaway
  • News
  • Post a Job
  • Privacy Policy
  • Resources
    • 2020 Chargeback Representment Guide for Merchants
    • 2020 Vendor Guide
    • 3 Ways a Unified Chargeback Management and Fraud Platform Increases Revenue
    • Addressing Payment Fraud and the Customer Experience in 2022
    • Associations and Non-Profits
    • ATO Fraud In Retail Report
    • Balancing Customer Experience and Fraud Prevention: What’s the Secret?
    • Digital Trust & Safety: Combating the Evolving Complexities of Payment Fraud
    • eCommerce Fraud Reports
    • eCommerce Fraud Webinars
    • Fraud Prevention Training and Certifications
    • Jobs Board
    • Merchant Fraud Journal’s Fraud Trends 2020 Report
    • Merchant Fraud Journal’s Fraud Trends 2021 Report
    • Merchant Fraud Journal’s Fraud Trends 2022 Report
    • MFJ’s 2022 Customer Experience Report
    • Podcasts
    • Prevent High-Velocity Fraud Attacks During the 2021 Holiday Season
    • Vendor Directory
    • Webinar – Addressing Payment Fraud and the Customer Experience in 2022
    • Webinar – Mitigating Fraud and Risk on the ACH Network
    • Win January Chargeback Disputes
  • Subscribed
  • Terms and Conditions

© 2021 Payments Media Solutions Canada Inc.

Are you sure want to unlock this post?
Unlock left : 0
Are you sure want to cancel subscription?
[class^="wpforms-"]
[class^="wpforms-"]