European Commission must pay 400 euros for improper transfer of personal data to the United States
The General Court of the European Union ruled this Wednesday (8 January 2025) that the European Commission must compensate a German citizen for failures to protect his personal data. The decision represents the first time that the European Union has been held responsible for not adhering to its own data protection standards.
The incident involved the improper transfer of a citizen’s personal information to the United States, specifically their IP address. The information was leaked through the use of the “Sign in with Facebook” function on a European Union portal intended for registering at a conference.
Such action resulted in the European Commission violating the bloc’s data protection guidelines. The affected individual will receive compensation of 400 euros (about R$ 2,520).
The European Commission recognized the verdict, stating that “will take note of the Court’s decision and carefully study the judgment and its implications.”
