Company – Fine (France, 2024)

Fine
Commission Nationale de l'Informatique et des Libertés5 June 2024France
final
Fine

General GDPR enforcement action

This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.

The French DPA has imposed a fine on a company operating a call center. The controller had systematically recorded all incoming and outgoing calls for training, evaluation and dispute purposes. The CNIL found that such comprehensive recording violated the principle of data minimization and that random and selective recording for training purposes was sufficient.

GDPR Articles Cited

Art. 5(1)(c) GDPR
France enforcementCommission Nationale de l'Informatique et des Libertés actionsAll Company actions
Full Legal Summary

The French DPA has imposed a fine on a company operating a call center. The controller had systematically recorded all incoming and outgoing calls for training, evaluation and dispute purposes. The CNIL found that such comprehensive recording violated the principle of data minimization and that random and selective recording for training purposes was sufficient.

Related Enforcement Actions (1)

Other enforcement actions involving Company in FR

Current
Jun 2024

Fine

Fine
Dec 2025· Commission Nationale de l'Informatique et des Libertés

The French DPA has imposed a fine of EUR 3,500,000 on a company. The controller operated a loyalty program in France and 16 other EU countries, using ...

€3.5M

Details

Fine Date

5 June 2024

Authority

Commission Nationale de l'Informatique et des Libertés

Enforcement Tracker ID

ETid-2345

Sources

About this data

Data: CMS GDPR Enforcement Tracker
Licensed under CC BY-NC-SA 4.0
AI-verified and classified

Cite as: Cookie Fines. Company - France (2024). Retrieved from cookiefines.eu

Report Inaccuracy

Last updated: