Amazon fined 32 million euros for ``too strict monitoring of employees''
Amazon was fined 32 million euros (approximately 5,143 million yen) by the French Data Protection Authority (CNIL) for ``setting up an overly intrusive system to monitor the activities and performance of its employees.'' I found out that it had been done.
Employee monitoring: CNIL fined AMAZON FRANCE LOGISTIQUE €32 million | CNIL
Amazon Fined $35M in France for 'Overly Intrusive' Employee Monitoring
It has often been pointed out that work at Amazon's warehouses is tough compared to other companies with similar warehouse operations.
Amazon warehouse workers are twice as likely to be seriously injured as their peers, and half of the industry's injuries are Amazon employees - GIGAZINE
Based on numerous reports, CNIL investigated the actual business conditions at Amazon's warehouses in France. As a result, we have identified multiple violations of the General Data Protection Regulation (GDPR) in systems that monitor employee activity and performance.
The findings can be broadly divided into two types: ``infringement related to employee monitoring using scanners'' and ``infringement related to video surveillance processing.''
A scanner is a device used for tasks such as product storage and packaging that is provided to employees working at Amazon's warehouses. All work is recorded, allowing you to monitor employee labor performance in real time.
First, the CNIL states that the data and productivity metrics collected by this scanner on all employees, including temporary workers, will be retained for 31 days. We believe that real-time and weekly data should be sufficient for reallocation.' It points out that retaining more data than that is a failure to comply with GDPR Article 5.1.c 'Data Minimization Principle'.
In addition, 'Stow Machine Gun' notifies you of an error when scanning the next item within 1.25 seconds after scanning the previous item, and 'Stow Machine Gun' indicates downtime when the scanner is not used for more than 10 minutes. The three indicators, ``idle time'' and ``latency under ten minutes,'' which indicate work interruption time when the scanner is not used for 1 to 10 minutes, are said to be leading to excessive monitoring. It was pointed out that this act violates Article 6 of the GDPR, which stipulates that
Regarding ``idle time'' and ``latency under ten minutes'', the authors point out that employees are now required to justify stopping their use of the scanner, no matter how brief. I am.
Regarding the use of scanners, the company said that until April 2020, temporary employees were not provided with a privacy policy stating that personal data would be collected. 'Non-compliance' was found to be in violation of Articles 12 and 13 of the GDPR.
Another violation of Articles 12 and 13 of the GDPR is that neither employees nor external visitors were properly informed about the video surveillance system. The video surveillance system's account was shared by multiple users, making access insecure and making it impossible to determine who had touched the software and carried out the action. A violation of Article 32 of the GDPR has been recognized as 'non-compliance'.
Although the CNIL does not view the scanner system itself as a problem as it is necessary for Amazon to do business, based on these results, it has ordered Amazon France Logistique, which handles Amazon's warehouse operations in France, to pay 32 million yen. We have decided to impose a fine of EUR.
Please note that Amazon disagrees with the CNIL's conclusion and has indicated that it may appeal.
About Amazon
Related Posts:
in Note, Posted by logc_nt