Straitstimes.com header logo

In a first, EU Court fines EU for breaching own data protection law

Sign up now: Get ST's newsletters delivered to your inbox

FILE PHOTO: European Union flags fly outside the EU Commission headquarters in Brussels, Belgium September 19, 2019. REUTERS/Yves Herman//File Photo

A German citizen’s personal data had been transferred to the US without proper safeguards.

PHOTO: REUTERS

Follow topic:

BRUSSELS - In a first, the EU General Court ruled on Jan 8 that the European Commission must pay damages to a German citizen for failing to comply with its own data protection regulations.

The court determined that the Commission transferred the citizen’s personal data to the United States without proper safeguards and ordered it to pay him €400 (S$564) in damages.

The individual had used the “Sign in with Facebook” option on the EU login webpage to register for a conference.

The court, which hears actions taken against EU institutions, found that this transfer of the user’s IP address to Meta Platforms in the US violated EU data protection rules.

Europe’s General Data Protection Regulation is widely regarded as one of the most comprehensive and stringent data privacy laws in the world.

Major companies such as Klarna, Meta, LinkedIn and others

have faced significant fines from the EU for non-compliance. REUTERS

More on this topic
EU opens investigation into TikTok over election interference
Pinterest secretly tracks users, EU privacy group says
See more on

E-paper

Newsletters

Podcasts

RSS Feed

About Us

Terms & Conditions

Privacy Policy

Need help? Reach us here.

Advertise with us

Download the app

Get unlimited access to exclusive stories and incisive insights from the ST newsroom
Subscribe Placeholder
MDDI (P) 046/10/2025. Published by SPH Media Limited, Co. Regn. No.202120748H. Copyright © 2025 SPH Media Limited. All rights reserved.