What is the maximum fine for non-compliance with GDPR?

The maximum fine for non-compliance with the General Data Protection Regulation (GDPR) is indeed up to €20 million or 4% of the annual global turnover. This amount underscores the GDPR's seriousness regarding data protection and privacy rights. The regulation outlines two tiers of fines based on the type of violation: one tier allows for fines of up to €10 million or 2% of the annual global turnover for less severe breaches, while the other tier, which applies to more significant infringements, permits fines of up to €20 million or 4% of annual global turnover.

This structure is designed to reflect the gravity of non-compliance and to incentivize organizations to adhere strictly to data protection principles, ensuring they implement necessary measures to safeguard personal data.

The provision for a fine that is based on a company's global turnover means that larger companies risk significant financial penalties, which enhances the effect of GDPR compliance across all business sizes. Hence, the correct answer highlights the crucial accountability mechanisms established by the GDPR.