Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Privacy & Compliance

Ireland Fines WhatsApp 225M Euros for Breaching EU Privacy Laws

Ireland on Thursday imposed a 225-million-euro fine on Facebook-owned messaging service WhatsApp for breaching EU data privacy laws after European regulators demanded the penalty be increased.

Ireland on Thursday imposed a 225-million-euro fine on Facebook-owned messaging service WhatsApp for breaching EU data privacy laws after European regulators demanded the penalty be increased.

Ireland was asked to “reassess and increase its proposed fine on the basis of a number of factors … and following this reassessment the DPC has imposed a fine of 225 million euro on WhatsApp,” said Ireland’s Data Protection Commission (DPC).

The fine, the equivalent of $267 million, was handed down by the DPC as the country hosts the European headquarters of Facebook. 

As Ireland hosts the regional headquarters of a number of major tech players such as Apple, Google and Twitter, the DPC has been largely responsible for policing adherence to the EU’s landmark GDPR data rights charter.

The agency launched the WhatsApp probe in December 2018 to examine whether the messaging app “discharged its GDPR transparency obligations” with regard to telling users how their data would be used. 

This included information provided about the processing of information between WhatsApp and other Facebook companies.

[ ReadAll Bark No Byte? Unease Over Irish Performance as EU’s Lead Data Watchdog ]

The DPC submitted its initial decision to other European regulators (CSAs) — whose approval is required — in December 2020 but received objections from eight of them. 

Advertisement. Scroll to continue reading.

Unable to reach consensus, a dispute resolution process was launched in June.

The European Data Protection Board (EDPB) adopted a binding decision last month that instructed the DPC to increase the fine.

The DPC also “imposed a reprimand along with an order for WhatsApp to bring its processing into compliance by taking a range of specified remedial actions.”

Written By

AFP 2023

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.

Register

SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.

Register

Expert Insights

Related Content

Compliance

The three primary drivers for cyber regulations are voter privacy, the economy, and national security – with the complication that the first is often...

Cybersecurity Funding

Los Gatos, Calif-based data protection and privacy firm Titaniam has raised $6 million seed funding from Refinery Ventures, with participation from Fusion Fund, Shasta...

Privacy

Many in the United States see TikTok, the highly popular video-sharing app owned by Beijing-based ByteDance, as a threat to national security.The following is...

Privacy

Employees of Chinese tech giant ByteDance improperly accessed data from social media platform TikTok to track journalists in a bid to identify the source...

Mobile & Wireless

As smartphone manufacturers are improving the ear speakers in their devices, it can become easier for malicious actors to leverage a particular side-channel for...

Cloud Security

AWS has announced that server-side encryption (SSE-S3) is now enabled by default for all Simple Storage Service (S3) buckets.

Audits

The PCI Security Standards Council (SSC), the organization that oversees the Payment Card Industry Data Security Standard (PCI DSS), this week announced the release...