Sweden's DPA issues SEK58M GDPR fine to Spotify

Sweden's data protection authority, the Integritetsskyddsmyndigheten, fined Spotify SEK58 million for alleged EU General Data Protection Regulation violations related to transparency. The IMY found Spotify responds to data access requests but "does not inform clearly enough about how this data is used by the company." The regulator added Spotify needs to be "more specific" with its disclosure of data practices and make it "easy for the person requesting access to their data to understand how the company uses this data."Full story

https://iapp.org/news/a/swedens-dpa-issues-sek58m-gdpr-fine-to-spotify