EU GDPR Art 32

Enforcement

Sportadmin gets SKr 6m fine for lacking IT security

January 27, 2026

Personal data of a large part of Sweden’s population was leaked on the darknet following an attack on the company in January 2025.

Martina Lindberg1 min read
Data

US data transfers: No more Groundhog Day

September 16, 2025

The European court finally said yes to transfers of personal data from the EU to the US.

Sherif Malak | Shoosmiths, Alice Wallbank | Shoosmiths4 min read
Data

Administrative fines by Irish DPC down more than 50% in 2024

July 3, 2025

The DPC processed fewer new cases, but received an 11% increase in GDPR breach notifications.

Martina Lindberg3 min read
$Vodafone fined for GDPR infractions in Germany$

Data

Vodafone fined for GDPR infractions in Germany

June 12, 2025

Failure to adequately monitor the work of third-party agencies and security deficiencies of online portal lead to a €45m ($51m) fine.

Thomas Hyrkiel1 min read
Data

IMY fines Swedish Equality Ombudsman over data security failures

May 7, 2025

The Swedish Government Agency failed to keep sensitive data contained in a web form fully secure.

Martina Lindberg1 min read
Podcasts

Podcast: Alice Wallbank from Shoosmiths on data privacy and cyber security issues

October 14, 2024

We spoke about: CrowdStrike outage, Ashley Madison data breach, prevalence of cyberattacks, government oversight and regulation.

Jean Hurley27 min listen
Data

Irish DPC fines Meta €91m for password storage failures

October 4, 2024

Meta Ireland stored social media users passwords in ‘plaintext’ without encryption.

Martina Lindberg1 min read
Data

Electricity and gas firm fined €5m for unsolicited contacts and using old data

September 20, 2024

More than 2,300 customers were contacted, with some ‘relationships on paper’ endorsed with false signatures.

Martina Lindberg1 min read