Amazon and WhatsApp saw biggest fines in EU last year over data rules violations as GDPR takes toll on Big Tech
- In 2021, Amazon.com was hit with the largest fine yet under the EU’s General Data Protection Regulation, and Meta Platforms’ WhatsApp faced the second-highest
- Fines under the GDPR rose sevenfold last year to US$1.26 billion, from US$180 million in 2020

Luxembourg’s data protection authority last year slapped Amazon with its biggest fine since the EU’s General Data Protection Regulation took effect almost four years ago. The US online retailer is challenging the 746 million-euro ($851 million) penalty. The Irish watchdog followed with the second-highest EU fine against WhatsApp, ordering it to pay 225 million euros for failing to be transparent about how it handled personal data.
The two record fines make up a large proportion of all GDPR fines in 2021, according to a report released by law firm DLA Piper on Tuesday. Total penalties rose sevenfold to 1.1 billion euros compared to 158.5 million euros in 2020.
While such record fines over privacy violations make headlines, another challenge facing companies will be to avoid regulatory scrutiny under GDPR. They must ensure they comply with a key EU court ruling in 2020 that limited the options to safely transfer data across the Atlantic, the report said.