noyb, a European privacy enforcement non-profit organization which focuses on commercial privacy issues on a European level, has filed ten GDPR complaints with the Austrian Data Protection Authority, on behalf of ten users which it represents, against eight online streaming companies for violations of Article 15. "As GDPR foresees € 20 million or 4% of the worldwide turnover as a penalty, the theoretical maximum penalty across the 10 complaints could be €18.8 billion," says noyb. According to Max Schrems, noyb's Director, all those companies (i.e., Amazon, Apple, DAZN, Spotify, SoundCloud, YouTube, Flimmit, Netflix) have been tested to check their compliance of the General Data Protection Regulation (GDPR) "right to access" provision described in the EU regulation's Article 15. The "right to access" grants all EU citizens the "right to get a copy of all raw data that a company holds about the user, as well as additional information about the sources and recipients of the data, the purpose for which the data is processed or information about the countries in which the data is stored and how long it is stored." After testing the eight companies "right to access" compliance, noyb found out that none of the eight streaming companies were fully compliant with Schrems going as far as to say that they were all engaging in "structural violation" of the EU data protection legislation. There's more to this post on OUR FORUM.