Four months after the EU’s General Data Protection Regulation took effect, the grand duchy’s privacy watchdog has reported an uptick in complaints about the handling of personal information.
The National Commission for Data Protection (CNPD), the body that enforces GDPR rules in Luxembourg, released figures on Friday for the period starting on 25 May and running through 27 September. A CNPD spokesman told Delano:
“We have received 158 complaints since 25 May, when the GDPR came into force. In total, we have already received 252 complaints in 2018, 52 more than in 2017.”
Organisations that hold personal data have reported, as required under GDPR rules, nearly 100 leaks and cyberattacks to the commission. “We have received 97 data breach notifications since 25 May,” the spokesman stated.
Several of the CNPD’s European counterparts have issued similar figures. Last week France’s CNIL said that it received 3,767 complaints between 25 May and 25 September, compared to 2,294 during the same period the year before.
In the UK, there were 6,281 complaints filed with the Information Commissioner’s Office between 25 May and 3 July, up from 2,417 during the same period the previous year, according to the TechCrunch news site.
Ireland’s Data Protection Commission, the Irish Times reported on 30 July, had received a total of 743 complaints (or roughly 370 a month) since 25 May, up from an average of 230 complaints a month in 2017.