On July 7, the CNIL fined (source document in French) Brandalley €30,000 for multiple breaches of French data protection laws. Violations included: failure to request credit card fraud authorizations from CNIL; failure to set up a data retention period for clients' data; and failure to implement sufficient measures to ensure the security and confidentiality of internet users' personal data.

The content of this article is intended to provide a general guide to the subject matter. Specialist advice should be sought about your specific circumstances.