fbpx

Download free GDPR compliance checklist!

Tag Archives for " Ireland "

Irish DPC probes whether Facebook data leak falls under GDPR time frame

The Irish Data Protection Commission (DPC) is probing whether any of the data records of 533 million Facebook users published over the weekend were leaked after the implementation of the General Data Protection Regulation (GDPR).

A dataset, appearing to be sourced from Facebook, appeared on a hacking website containing records of 533 million individuals, including phone numbers and email addresses. The DPC said a significant number of users were European Union residents and much of the data appears to have been scraped from Facebook profiles.

These leaks were before the implementation of GDPR in May 2018 and therefore Facebook did not notify the DPC. However, the DPC is saying that there also “additional records” in the newly published dataset “which may be from a later period” and therefore under the scope of GDPR.

Source: Irish DPC probes whether Facebook data leak falls under GDPR time frame | News | GRC World Forums

MEPs rue lack of GDPR sanctions issued by Irish data authority

MEPs have said that “a lack of political will and resources” had resulted in a laggard approach to enforcement of the EU’s general data protection regulation (GDPR), singling out in particular the lack of sanctions dished out by the Irish data protection authority.

To date, the Irish DPC has issued six fines for GDPR breaches. These include three against Tusla, the country’s Child and Family Agency, a €65,000 penalty issued against Cork University Maternity Hospital, a €70,000 fine for University College Dublin, and, in the first fine for a cross-border case, a €450,000 charged levied against Twitter for falling short of data breach notification obligations.

Source: MEPs rue lack of GDPR sanctions issued by Irish data authority – EURACTIV.com

Microsoft says Ireland should have ‘a bigger voice’ on EU regulation

Microsoft would like Ireland to have “a bigger voice” in influencing European regulation on technology issues, according to the company’s senior European policy director.

He said that countries which favour “light regulation rather than heavy regulation have become a little less vocal” since Brexit and that Ireland’s voice was now “critical” in striking a balance.

He said that Microsoft has been in discussions with Irish Government ministers over the last week to raise its voice on a number of tech-related issues.

Source: Microsoft says Ireland should have ‘a bigger voice’ on EU regulation – Independent.ie

EU Data Privacy Watchdogs Urged to Sort Out ‘Public Squabbles’

European Union privacy regulators must sort out their “public squabbles” over the enforcement of the bloc’s data-protection rules or its executive body may consider moving to a more centralized model to target violations.

Tensions have been building for months among national data protection watchdogs over the amount of time their Irish colleagues are taking to complete probes on big U.S. tech companies, including Facebook Inc. and Apple Inc.

Jourova’s comments follow a spat that erupted last week between the Irish watchdog and a European Parliament committee that’s been working on draft resolutions targeting data protection commissioner Helen Dixon’s office for not acting fast enough.

Source: EU Data Privacy Watchdogs Urged to Sort Out ‘Public Squabbles’ – Bloomberg

Ireland’s DPA publishes Annual Report 2020

In its second full year overseeing and regulating the GDPR in Ireland, the Data Protection Commission  (DPC) has published its 2020 Annual Report, highlighting key observations, emerging guidance, and large scale inquiries and decisions of 2020.

Primary areas of focus for the DPC in 2020 included enforcement (under both GDPR & ePrivacy), breach notifications, data transfers (including an increase in BCR applications) and increased focus on the lead supervisory authority (or ‘One-Stop Shop’) regulatory mechanism.

Full article: Ireland: DPC Annual Report 2020: Enforcement & Transfers Dominate Agenda – Privacy Matters

EU-U.S. data flows could face ‘massive disruption’

One of the European Union’s most powerful data regulators has warned companies may yet face massive disruption to translatlantic data flows as a result of an EU court ruling last year, despite efforts by policymakers to avoid that outcome.

Europe’s highest court last July ruled an EU-U.S. data transfer agreement was invalid, citing concerns the U.S. surveillance regime might not respect the privacy rights of citizens in the bloc.

Irish Data Protection Commissioner Helen Dixon, who was involved in the case, said the full impact would be determined by an upcoming court ruling in Ireland and efforts by EU and U.S. officials to ameliorate it.

Dixon said her office was “building momentum” after growing from 30 to 150 staff in seven year. It is was likely to issue at least six or seven decisions this year, up from two last year – against Twitter and Facebook’s WhatsApp messaging service.

Source: EU-U.S. data flows could face ‘massive disruption’ – Irish regulator | Reuters

EU’s lead data supervisor for most of big tech is using outdated tech

The lead data supervisor for a slew of tech giants in the European Union, including Apple, Facebook, Google, LinkedIn, TikTok and Twitter, is still relying on Lotus Notes to manage complaints and investigations lodged under the bloc’s flagship General Data Protection Regulation (GDPR).

The revelation that the lead data supervisor for much of big tech in Europe is handling complaints using such ‘last-gen’ software not only looks highly embarrassing for the DPC but raises questions over the effectiveness of its senior management.

Source: EU’s lead data supervisor for most of big tech is still using Lotus Notes | TechCrunch

Data watchdog rejects EU criticism over Max Schrems complaints

The Irish Data Protection Commission (DPC) has strongly refuted criticism of its processes by a European Parliament committee as “false”.

The DPC had been dealt a stinging rebuke by the EU’s Parliamentary Committee on Civil Liberties, Justice and Home Affairs – known as the LIBE committee – over its handling of the complaints of Austrian privacy activist Max Schrems.

The committee had called on the EU Commission to begin infringement proceedings against the DPC regarding its management of data rights.

Source: Data watchdog rejects EU criticism over Max Schrems complaints

Irish DPC publishes draft Fundamentals for a Child-Oriented Approach to Data Processing

On December 18, 2020, the Irish Data Protection Commission (DPC) published its draft Fundamentals for a Child-Oriented Approach to Data Processing.

The Fundamentals introduce child-specific data protection principles and measures, which are designed to protect children against data processing risks when they access services, both online and off-line.

The DPC notes that all organizations collecting and processing children’s data should comply with the Fundamentals. The Fundamentals are open for public consultation until March 31, 2020.

Source: Irish DPC publishes draft Fundamentals for a Child-Oriented Approach to Data Processing

Facebook’s EU-US data transfers face their final countdown

Ireland’s Data Protection Commission (DPC) has agreed to swiftly finalize a long-standing complaint against Facebook’s international data transfers which could force the tech giant to suspend data flows from the European Union to the US within in a matter of months.

The DPC has made the commitment to a swift resolution of Schrems’ complaint now in order to settle a judicial review of its processes which noyb, his privacy campaign group, filed last year in response to its decision to pause his complaint and opt to open a new case procedure.

Source: Facebook’s EU-US data transfers face their final countdown | TechCrunch

1 2 3 14
>