Contact Us

Netflix Fined €4.75 Million for Privacy Violations in the Netherlands

Written by Jeremy Werner

Jeremy is an experienced journalists, skilled communicator, and constant learner with a passion for storytelling and a track record of crafting compelling narratives. He has a diverse background in broadcast journalism, AI, public relations, data science, and social media management.
Posted on 12/19/2024
In News

The Netherlands’ Data Protection Authority (Autoriteit Persoonsgegevens, AP) has fined Netflix €4.75 million for failing to adequately inform customers about its handling of personal data between 2018 and 2020.

 

An investigation by the AP, initiated in 2019, revealed that Netflix’s privacy practices were insufficiently transparent and fell short of the requirements set by the EU’s General Data Protection Regulation (GDPR). The streaming giant’s privacy policy lacked clarity regarding its data processing activities, and customers who sought information about their personal data were not provided with adequate details.

 

Netflix collects a range of personal data from its users, including email addresses, phone numbers, payment information, and details about viewing habits. However, the AP found several critical shortcomings in the company’s disclosures:

 

  • Lack of clarity on purposes and legal grounds: Netflix did not adequately explain why it collected certain types of personal data or the legal basis for doing so.

 

  • Data sharing with third parties: The company provided insufficient details about which entities it shared user data with and for what reasons.

 

  • Data retention periods: Netflix did not clearly specify how long it retained personal data.

 

  • International data transfers: Information about safeguards for data sent outside Europe was incomplete.

 

The investigation was prompted by complaints from None of Your Business (noyb), an Austrian privacy advocacy organization. As Netflix’s European headquarters are based in the Netherlands, the AP took the lead, coordinating with other EU data protection authorities to ensure compliance with GDPR.

 

The AP determined that Netflix violated key GDPR provisions requiring transparency and accessibility in its privacy practices.

 

Netflix has since updated its privacy policy and improved its customer information processes. However, the company has filed an objection to the fine.

 

 

Need Help?

 

If you have questions or concerns about any global guidelines, regulations and laws, don’t hesitate to reach out to BABL AI. Their Audit Experts can offer valuable insight, and ensure you’re informed and compliant.

 

What’s New?

Stay up to date with the latest updates.

U.S. Federal AI Governance Sees Progress but Faces Key Challenges, Report Finds

U.S. Federal AI Governance Sees Progress but Faces Key Challenges, Report Finds

01.30.2025
OpenAI Seeks to Block Indian Media Giants from Copyright Lawsuit

OpenAI Seeks to Block Indian Media Giants from Copyright Lawsuit

01.30.2025
Canada’s Competition Bureau Releases AI Report Highlighting Market Dynamics and Regulatory Concerns

Canada’s Competition Bureau Releases AI Report Highlighting Market Dynamics and Regulatory Concerns

01.30.2025

Subscribe to our Newsletter

Keep up with the latest on BABL AI, AI Auditing and
AI Governance News by subscribing to our news letter
By subscribing, you agree with our privacy policy and our terms of service.