France: CNIL imposes €1.75 million fine on AG2R LA MONDIALE

After an inspection conducted in 2019, the French data privacy regulator, the Commission nationale de l'informatique et des libertés (CNIL), has imposed a €1.75 million fine on the French insurance firm AG2R LA MONDIALE for multiple breaches of its obligations under the GDPR. Specifically, the CNIL found that AG2R LA MONDIALE had retained customer data for longer than the maximum legal retentioin period. Additionally, it had failed to provide sufficient information to individuals during phone calls, although the changes necessary for compliance were made after inspection.