The Dutch Data Protection Authority (Autoriteit Persoonsgegevens, AP) has imposed a €4.75 million fine on Netflix for failing to adequately inform customers about the use of their personal data between 2018 and 2020.
The AP’s investigation, initiated in 2019, revealed that Netflix’s privacy statement lacked clarity regarding data processing practices. Additionally, when customers inquired about the personal data collected, Netflix provided insufficient information, constituting violations of the General Data Protection Regulation (GDPR).
Although Netflix has since updated its privacy statement and improved information transparency, the company has objected to the fine. As of now, Netflix has not responded to requests for comment.
This enforcement action underscores the AP’s commitment to ensuring that organizations comply with GDPR requirements, particularly concerning transparency and user rights. The AP has previously imposed significant fines on companies like Uber for similar privacy violations