Dutch Data Protection Authority Slaps $5 Million Fine On Netflix For Hiding Customers’ Data Usage

Dutch Data Protection Authority Slaps $5 Million Fine On Netflix For Hiding Customers’ Data Usage

Accuses it of violating General Data Protection Regulation

The Dutch Data Protection Authority (DDPA) fined Netflix €4.75 million for not informing users clearly about its data practices from 2018-2020.

After investigation began in 2019, the Netherlands privacy watchdog stated, "Netflix did not inform customers clearly in its privacy statement about what exactly it does with the data. Customers did not receive sufficient information when they asked Netflix which data the company collects about them. These are violations of the General Data Protection Regulation (GDPR).”

A Netflix spokesperson responded, "Since investigation began over five years ago, we have cooperated with the DDPA and proactively evolved our privacy information to provide greater clarity to our members. We object to the decision."

Netflix revised its privacy policy and enhanced its information disclosure. It is contesting the fine.

Meanwhile, Aleid Wolfsen, Chairman, DDPA remarked, "A company with a turnover of billions, and with millions of customers worldwide, has to explain properly to its customers how it handles their data. That must be crystal clear, especially if the customer asks. That was not in order."

The data protection authority said that Netflix provided inadequate information in several spheres. It was not transparent on collecting data, sharing it with third parties, the data retention period, and the security measures employed for its transfers outside Europe.