An anonymous reader quotes VentureBeat:
Sweden’s Data Protection Authority (DPA) has slapped Google with a 75 million kronor ($8 million) fine for “failure to comply” with Europe’s General Data Protection Regulation (GDPR) after the internet giant reportedly failed to adequately remove search result links under right-to-be-forgotten requests. In a notable twist, the DPA also demanded that Google refrain from informing website operators their URLs will be de-indexed… Rather than asking website operators to remove a web page, Google — and other search engines — are required to hide the page from European search results.
Since the ruling took effect, Google has received millions of de-indexing requests, though it reports that fewer than 45% have been fulfilled… The crux of the Swedish DPA’s complaint is that Google did not “properly remove” two search result listings after it was instructed to do so back in 2017. “In one of the cases, Google has done a too narrow interpretation of what web addresses needed to be removed from the search result listing,” the DPA wrote in its statement. “In the second case, Google has failed to remove the search result listing without undue delay.” But inadequate and tardy removals are only part of the issue, according to Sweden’s DPA, which also argues that Google should keep website operators in the dark about removal requests…
If Google’s latest fine is upheld — the company has three weeks to appeal — it would rank among the seven largest GDPR penalties of all time. Google confirmed to VentureBeat that it does indeed intend to file an appeal. “We disagree with this decision on principle and plan to appeal,” the spokesperson said.
Read more of this story at Slashdot.