Meta fined $274M under GDPR for data scraping breach
By 
Neil Hodge2022-11-28T20:32:00
Meta Platforms was fined 265 million euros (U.S. $274 million) for failing to put in place adequate measures to protect users’ data after a leak compromised the personal details of more than half a billion individuals.
The Irish Data Protection Commission (DPC)—Meta’s European regulator—also reprimanded the company and imposed a range of corrective technical and organizational measures it must comply with within a three-month deadline.
In a decision adopted Nov. 25 and announced Monday, the data regulator said Meta infringed Article 25 of the General Data Protection Regulation (GDPR) over the way users’ details were “scraped” from public profiles from the date the EU’s privacy legislation went into effect on May 25, 2018, up until September 2019.
THIS IS MEMBERS-ONLY CONTENT
You are not logged in and do not have access to members-only content.
If you are already a registered user or a member, SIGN IN now.
Related articles
-
PremiumRecord Meta fine brings wider GDPR ramifications for EU-U.S. data transfers
Meta’s latest punishment for breaching the European Union’s General Data Protection Regulation will have far-reaching ramifications for companies both in Europe and beyond.
-
News BriefMeta fined record $1.3B in GDPR data transfer ruling
The Irish Data Protection Commission announced a record penalty of €1.2 billion (U.S. $1.3 billion) against Meta regarding its transfers of user data from the European Union to the United States in violation of the General Data Protection Regulation.
-
News BriefWhatsApp fined $5.9M for lawful processing GDPR violations
The Irish Data Protection Commission announced a fine of €5.5 million (U.S. $5.9 million) against WhatsApp under the General Data Protection Regulation for forcing users to consent to updated terms and conditions or lose access to the service.
More from Regulatory Enforcement
-
News BriefFTC orders GoDaddy to upgrade cybersecurity defenses following three breaches
The Federal Trade Commission has ordered web hosting company GoDaddy to implement a “robust” information security program following at least three data breaches that the agency said were aided by lax cybersecurity measures.
-
News BriefFTC shuts down student loan firms over deceptive debt relief practices
The U.S. Federal Trade Commission (FTC) took action against a pair of student loan debt relief companies for allegedly deceiving borrowers. The move came despite the Trump administration’s broader efforts to roll back enforcement actions against businesses since taking office.
-
News BriefCoinbase faces a leftover SEC probe as crypto enforcement loses steam
After dismissing its lawsuit against the crypto exchange Coinbase in March, a second investigation into the exchange by the Securities and Exchange Commission has surfaced, according to a report from the New York Times. This comes as a bit of a surprise after the Trump administration has been scaling down ...