Meta fined $414M for targeted advertising GDPR breaches
By 
Neil Hodge2023-01-04T18:46:00
The Irish Data Protection Commission (DPC) fined Meta Ireland a total of 390 million euros (U.S. $414 million) for breaching the General Data Protection Regulation (GDPR) by forcing users to agree their personal data can be used for targeted advertising to access Facebook and Instagram.
Of the penalty total, €210 million (U.S. $223 million) relates to Facebook breaches and €180 million (U.S. $191 million) to Instagram breaches, the regulator announced Wednesday. Complaints against the platforms were lodged the day the GDPR came into force in May 2018.
Meta Ireland must also bring its data processing operations into compliance with the decision within three months. The company said it plans to appeal.
Related articles
-
News BriefIrish DPC fines LinkedIn $335M over GDPR violations related to targeted advertising
The Irish Data Protection Commission fined Microsoft-owned LinkedIn 310 million euros (U.S. $335 million) over violations of the European Union’s General Data Protection Regulation related to the social media company’s data processing and targeted advertising.
-
News BriefNorwegian DPA threatens Meta with fines over behavioral advertising
The Norwegian Data Protection Authority is set to impose a temporary ban on Meta carrying out behavioral advertising on Facebook and Instagram using the personal information of users in the country.
-
News BriefMicrosoft reserves $425M for LinkedIn GDPR penalty
Microsoft will reserve $425 million to pay a potential fine from the Irish Data Protection Commission regarding alleged violations of the General Data Protection Regulation by its social media subsidiary, LinkedIn.
More from Regulatory Enforcement
-
ArticleLarge wound care practice pays $45M, agrees to monitoring
One of the largest wound care practices in the nation and its founder have agreed to pay $45 million and be subjected to third-party monitoring, to settle allegations that the business intentionally overbilled Medicare by priming its electronic medical records system to do so.
-
News BriefSEC dismisses SolarWinds case tied to 2020 cyberattack
The dismissal of charges against SolarWinds for alleged cybersecurity lapses related to a 2020 Russian cyberattack in 2020 are the latest in a continuing pattern of leniency for corporations by the Trump administration.
-
PremiumPart Two: FCPA cases closed by DOJ, SEC since January
Since the start of the Trump Administration, the Department of Justice has been winding down a number of Foreign Corrupt Practices Act investigations with little public attention. This second article further explores how and why these FCPA matters have been closed.