In 2019, the French Data Protection Authority (CNIL) fined Google €50 million for violating GDPR. The ruling, known as Google v. CNIL (2019), proved that GDPR is not simply an abstract text – all companies, including corporations and market monopolists, must obey its provisions.

Decisions of high courts, such as this one, also prove useful in enforcing data privacy. Even if the decisions are made in a particular case between two entities or individuals, these rulings often explain legal provisions and are used as an additional set of legal principles. Historically, court decisions have had more impact in the US, which follows the case law system.

You may also like:

Data privacy laws in the United States and how they affect your business

11 new privacy laws around the world and how they’ll affect your analytics

Facebook Inc. v. Duguid

EU-US data privacy framework


  • 25 years of digital analytics with Brian Clifton: Being data-informed, not just data-driven

    As organizations increasingly rely on data in their business decisions, the challenges of ensuring data accuracy, consistency, and ethical collection are becoming more and more important. Along with understanding the audience’s needs, supporting collaboration between teams, and securing privacy compliance, these challenges have evolved into data collection and analytics priorities.  Let’s dive into the third…

    Read more

  • Piwik PRO is HIPAA certified

    Piwik PRO is officially HIPAA certified!

    At Piwik PRO, ensuring the highest level of security and data protection has always been our top priority. Developing privacy-friendly analytics is just one aspect of our commitment. We validate our approach by obtaining external certifications from independent organizations. As such, we are pleased to announce that a HIPAA (Health Insurance Portability and Accountability Act)…

    Read more