Ireland DPA fines Meta €265 million

Ireland’s Data Protection Commission (DPC) yesterday announced its decision in the Facebook “Data Scraping” Inquiry dating back to 2021.

The DPC has issued a fine of €265 million and a range of corrective measures on Meta. It says that the processing was carried out by Meta Platforms Ireland Limited (‘MPIL’) during the period between 25 May 2018 and September 2019. The main issues cited by the regulator were non compliance with the GDPR obligation for Data Protection by Design and Default and Technical and Organisational Measures.

The inquiry looked into 530 million Facebook users’ personal data being exposed online. At the time, Facebook said that it had remedied the situation.

The DPC’s detailed decision, which is not yet publicly available, was taken in cooperation with all of the other EU DPAs.

See: DPC - Data Protection Commission announces decision in Facebook “Data Scraping” Inquiry