Data showing a person The European Union’s General Data Protection Regulation (GDPR) takes effect in May, but many companies outside Europe have only recently awakened to the fact that GDPR affects them. (Image: Shutterstock)

With revelations that the political advertising company Cambridge Analytica mined millions of Facebook accounts without users’ consent, Facebook Inc. may be subject to a British investigation that could lead to fines as high as £500,000 ($700,000). While the company also faces potential U.S. sanctions, in Europe the timing works out in Facebook’s favor: If the scandal had happened two months from now, it might have been covered by a new European law that allows penalties as high as 4 percent of a company’s global revenue, or in Facebook’s case, more than $1.5 billion.

Related: What global employers need to know about new EU privacy protections

Complete your profile to continue reading and get FREE access to, part of your ALM digital membership.

Your access to unlimited content isn’t changing.
Once you are an ALM digital member, you’ll receive:

  • Critical information including cutting edge post-reform success strategies, access to educational webcasts and videos, resources from industry leaders, and informative Newsletters.
  • Exclusive discounts on ALM, BenefitsPRO magazine and events.
  • Access to other award-winning ALM websites including and

Already have an account?


© 2023 ALM Global, LLC, All Rights Reserved. Request academic re-use from All other uses, submit a request to [email protected]. For more information visit Asset & Logo Licensing.



Join BenefitsPRO

Don’t miss crucial news and insights you need to navigate the shifting employee benefits industry. Join now!

  • Unlimited access to - your roadmap to thriving in a disrupted environment
  • Access to other award-winning ALM websites including and
  • Exclusive discounts on and ALM events.

Already have an account? Sign In Now
Join BenefitsPRO

Copyright © 2023 ALM Global, LLC. All Rights Reserved.