Print Page      Close Window     

SEC Filings

TRIVAGO N.V. filed this Form 20-F on 03/06/2018
Entire Document

example, trip booking services). The GDPR enhances data protection obligations for processors and controllers of personal data, including, for example, expanded disclosures about how personal information is to be used, limitations on retention of information, mandatory data breach notification requirements and onerous new obligations on services providers. Non-compliance with the GDPR can trigger significant fines of up to €20 million or 4% of total worldwide annual turnover, whichever is higher. We may incur substantial expense in complying with the new obligations to be imposed by the GDPR and we may be required to make significant changes in our business operations and product and services development, all of which may adversely affect our revenue and our business overall. We could be adversely affected if we fail to comply fully with all of these requirements and other laws in jurisdictions where we operate or target users. In addition, we could be adversely affected if legislation or regulations are expanded to require changes in our business practices or if governing jurisdictions interpret or implement their legislation or regulations in ways that may have a material adverse effect on our business, results of operations, financial condition and prospects.
In recent years, U.S. and European lawmakers and regulators have expressed concern over the use of third-party cookies, web beacons and similar technology for online advertising, which is fundamental to our business model. The current European laws that cover the use of cookies and similar technology and marketing online or by electronic means are under reform. Unlike the current law, the new proposed e-Privacy Regulation will apply directly in each EU member states, without the need for further enactment at the member state level. When implemented, the e-Privacy Regulation is expected to alter rules on third-party cookies, web beacons and similar technology for online behavioral advertising and to impose stricter requirements on companies using these tools. The draft also extends the strict opt-in marketing rules with limited exceptions to business-to-business communications, and significantly increases penalties. Regulation of cookies and web beacons may lead to broader restrictions on our advertising activities, including efforts to understand users’ Internet usage. Such regulations may have a chilling effect on businesses, such as ours, that collect and use online usage information in order to attract and retain advertisers and may increase the cost of maintaining a business that collects or uses online usage information, increase regulatory scrutiny and increase the potential for civil liability under consumer protection laws. In response to marketplace concerns about the usage of third-party cookies and web beacons to track user behavior, providers of major browsers have included features that allow users to limit the collection of certain data in general or from specified websites, and some regulatory authorities have been advocating the development of browsers that block cookies by default. These developments could impair our ability to collect user information that attracts advertisers. If such technology is widely adopted, it could adversely affect our business.