The French arm of popular Swedish furniture retail company Ikea has been found guilty of illegally spying on employees and ordered to pay €1.1 million (£861,000) in fines and damages.
The retailer engaged in “receiving personal data by fraudulent means” between 2009 and 2012, according to the ruling. However, the company was accused of engaging in surveillance on employees since the early 2000s.
This included paying to gain access to police files as well as employing private detectives to gather information on Ikea France staff and customers who were deemed potentially troublesome by the company. In one case heard by the French judges, a staff member claiming unemployment benefits had their bank data accessed by Ikea France because of suspicions of fraud.
The alarm was first raised by Ikea France’s trade unions in 2012, members of which had been subjected to the company’s surveillance. On Wednesday, the company was fined €1.1 million, with former chief executive Jean-Louis Baillot ordered to pay €50,000 (£43,000) for storing personal data. He has also received a two-year suspended jail term.
Commenting on the ruling, Ray Walsh, digital privacy expert at ProPrivacy, said that “it is good to see the French court finding in favour of privacy”. Nevertheless, he described the €1.1 million fine as a “little more than a slap on the wrist”. During the case, prosecutors had argued for an almost doubled fine of €2 million.
RELATED RESOURCE
“The good news is that this investigation dates back to 2012, which was prior to the introduction of GDPR. As a result, any companies that engage in similar practices nowadays would be subject to much larger fines – which should ensure that this decision still acts as a powerful deterrent,” he told IT Pro.
“It is hard to consider this much of a win because of the low-cost Ikea has incurred. Ultimately, it is a symbolic win and no more, and it is a shame that Ikea couldn’t have been fined under GDPR for such highly immoral, illegal, and premeditated surveillance activities at the hands of top brass in the French branch,” he added.
Ikea's parent company Ingka Group issued a statement saying that that "Ikea Retail France has strongly condemned the practices, apologised and implemented a major action plan to prevent this from happening again”.
-
Bigger salaries, more burnout: Is the CISO role in crisis?In-depth CISOs are more stressed than ever before – but why is this and what can be done?
-
Cheap cyber crime kits can be bought on the dark web for less than $25News Research from NordVPN shows phishing kits are now widely available on the dark web and via messaging apps like Telegram, and are often selling for less than $25.
-
The business value of Zscaler Data ProtectionWhitepaper Understand how this tool minimizes the risks related to data loss and other security events
-
Top data security trendsWhitepaper Must-have tools for your data security toolkit
-
Three essential requirements for flawless data protectionWhitepaper Want a better CASB and stronger DLP? You have to start with the right foundation
-
The gratitude gapWhitepaper 2023 State of Recognition
-
The top five risks of perimeter firewallsWhitepaper ...and the one way to overcome them all
-
Redefining modern enterprise storage for mission-critical workloadsWhitepaper Evolving technology to meet the mission-critical needs of the most demanding IT environments
-
The business value of storage solutions from Dell TechnologiesWhitepaper Streamline your IT infrastructure while meeting the demands of digital transformation
-
Building a data governance strategy in 2023In-depth Data governance will continue to expand as attitudes change and businesses look to optimise the value of their data
