Meta Fined €251 Million for 2018 GDPR Data Breach

Meta Platforms Ireland Limited Fined €251 Million for 2018 Data Breach

The Irish Data Protection Commission (DPC) has taken substantial enforcement action against Meta Platforms Ireland Limited (MPIL), imposing a hefty fine of €251 million due to a significant data breach disclosed in 2018. This breach is notable not only for its scale but also for the sensitive nature of the compromised information.

Details of the Data Breach

The breach affected approximately 29 million Facebook accounts across the globe, with around 3 million of those belonging to users from the EU/European Economic Area. A wealth of personal data was compromised, including:

Names
Email addresses
Phone numbers
Locations
Workplaces
Birthdays
Religious beliefs
Gender

GDPR Violations by Meta

Following a thorough investigation, the DPC concluded that Meta had violated several aspects of the General Data Protection Regulation (GDPR). Two primary concerns were identified:

Failure to fulfill data breach notification obligations under Article 33(3) and Article 33(5), resulting in an €11 million fine.
Inadequate design of data processing systems concerning data protection principles as stipulated by Article 25(1) and Article 25(2), which led to a staggering €240 million fine.

Significance of the Enforcement Action

DPC Deputy Commissioner Graham Doyle emphasized the importance of this enforcement action, signaling the serious risks and damages that may arise when organizations fail to integrate data protection requirements into their design and development processes. The exposure of users' private data is not merely an inconvenience; it poses substantial threats to fundamental rights and freedoms.

Looking Ahead

The DPC has indicated that further details regarding the full decision and its implications will be released in the near future. This landmark ruling serves as a critical reminder for tech companies operating within the EU to prioritize data protection and adhere strictly to GDPR regulations.