Under new European data protection rules announced this week, companies can face fines of as much as €1 million or 2 percent of their global annual turnover for a data breach.
"[The] new rules include a 'right to be forgotten', which means people will be able to delete their data forever unless there are legitimate grounds for retaining it," writes SiliconRepublic's John Kennedy.
"Organisations will only have to deal with a single national data protection authority in the EU country where they have their main establishment," Kennedy writes. "This means that in many cases internet giants such as Google, Twitter and Facebook, which have their European headquarters in Dublin, will deal with the Irish Data Protection Commissioner on privacy matters."
Go to "New EU data rules: fines of up to 2pc of turnover for privacy breaches" to read the details.
For regular security news updates, follow eSecurityPlanet on Twitter: @eSecurityP.