Description

Ended CNIL injunction proceedings against Free for alleged breach of data subject rights

On 20 March 2023, the National Commission for Information Technology and Civil Liberties (CNIL) ended the injunction proceedings against telecommunications provider Free for breaching data subject rights, including the rights to access and erasure. The company was ordered to provide comprehensive responses to access requests from four complainants, including identifying the data brokers from whom it had obtained the personal data of the complaining parties, within three months or face a EUR 500 penalty per day of delay. In response, the company revealed the data brokers for two complainants but lacked information for the others. The Restricted Committee opted not to impose the penalty, acknowledging the company's inability to comply because the relevant files had been destroyed entirely.

Original source

Scope

Policy Area
Data governance
Policy Instrument
Data protection regulation
Regulated Economic Activity
infrastructure provider: internet and telecom services
Implementation Level
national
Government Branch
executive
Government Body
data protection authority

Complete timeline of this policy change

Hide details
2022-11-30
in force

On 30 November 2022, the National Commission for Information Technology and Civil Liberties (CNIL) …

2023-03-20
concluded

On 20 March 2023, the National Commission for Information Technology and Civil Liberties (CNIL) end…

We use cookies and other technologies to perform analytics on our website. By opting in, you consent to the use by us and our third-party partners of cookies and data gathered from your use of our platform. See our Privacy Policy to learn more about the use of data and your rights.