We use cookies to collect and analyse information on site performance and usage to improve and customise your experience, where applicable. View our Cookies Policy. Click Accept and continue to use our website or Manage to review and update your preferences.


Strictly necessary cookies

Cookie name Duration Cookie purpose
ASP.NET_SessionId Session This cookie holds the current session id (OPPassessment only)
.ASPXANONYMOUS 2 Months Authentication to the site
LSI 1 Year To remember cookie preference for Law Society websites (www.lawsociety.ie, www.legalvacancies.ie, www.gazette.ie)
FTGServer 1 Hour Website content ( /CSS , /JS, /img )
_ga 2 Years Google Analytics
_gat Session Google Analytics
_git 1 Day Google Analytics
AptifyCSRFCookie Session Aptify CSRF Cookie
CSRFDefenseInDepthToken Session Aptify defence cookie
EB5Cookie Session Aptify eb5 login cookie

Functional cookies

Cookie name Duration Cookie purpose
Zendesk Local Storage Online Support
platform.twitter.com Local Storage Integrated Twitter feed

Marketing cookies

Cookie name Duration Cookie purpose
fr 3 Months Facebook Advertising - Used for Facebook Marketing
_fbp 3 months Used for facebook Marketing
DPC hits WhatsApp with record GDPR fine

03 Sep 2021 / technology Print

DPC hits WhatsApp with record GDPR fine

The Data Protection Commission (DPC) has hit WhatsApp with a record €225 million for breaches of its obligations under the EU’s GDPR data-privacy rules.

The watchdog has also reprimanded the Facebook-owned company, and has ordered it to bring its data-processing into compliance by taking “a range of specified remedial actions”.

The DPC began its investigation in December 2018. The probe examined whether WhatsApp had provided enough information to users and non-users of its service – and whether that information had been transparent enough.

EDPB ruling

This included information provided to users about the processing of information between WhatsApp and other Facebook companies.

After its investigation, the DPC submitted a draft decision to other European data regulators in December 2020. After objections from eight of these regulators, and subsequent discussions, the DPC triggered the GDPR’s dispute-resolution process.

This led to a binding ruling in July by the European Data Protection Board (EDPB), which ordered the DPC to increase its fine.

'Eye-catching'

WhatsApp has indicated that it will appeal the ruling.

Data-law experts said the fine highlighted the importance of complying with GDPR rules on transparency for users, non-users, and the data-sharing between group entities.

John Magee (head of DLA Piper’s privacy, data-protection, and security practice in Ireland) said that the decision showed the EU’s “complex consistency and dispute-resolution processes at work”,

“An eye-catching aspect of that process was the increase in the size of the fine, from a range of €30m-€50m first proposed by the DPC,” he added.

Gazette Desk
Gazette.ie is the daily legal news site of the Law Society of Ireland