Irish Information Security Forum

Yet another DPC fine for Meta, this time over WhatsApp

Source: DataProtection Commission
19th January 2023



DPC Ireland


The Data Protection Commission (“DPC”) has announced the conclusion of an inquiry into the processing carried out by WhatsApp Ireland Limited (“WhatsApp Ireland”) in connection with the delivery of its WhatsApp service, in which it has fined WhatsApp Ireland €5.5 million (for breaches of the GDPR relating to its service).


WhatsApp Ireland has also been directed to bring its data processing operations into compliance within a period of six months.


The inquiry concerned a complaint made on 25 May, 2018 by a German data subject about the WhatsApp service. In advance of 25 May 2018, the date on which the GDPR came into operation, WhatsApp Ireland updated its Terms of Service, and informed users that if they wished to continue to have access to the WhatsApp service following the introduction of the GDPR, existing (and new) users were asked to click “agree and continue” to indicate their acceptance of the updated Terms of Service. (The services would not be accessible if users declined to do so).


WhatsApp said it disagreed with the decision and plans to appeal.

“We strongly believe that the way the service operates is both technically and legally compliant,”

it said in a statement.


Read the DPC News Release here:-
whatsapp fined 5.5 million by DPC


If you are interested in finding out more about the IISF, or would like to attend one of our Chapter Meetings as an invited guest, please contact the
IISF Secretary:

By email:

By post:

David Cahill

Information Security

GPO, 1-117
D01 F5P2

Enhance your Cybersecurity knowledge and learn from those at the coalface of information Security in Ireland

secured by edgescan digital security radar logo

© iiSf. All rights reserved. CRN: 3400036GH  - Privacy Statement  - Cybersecurity Ireland  - Sponsorship  - Cybersecurity News  - Produced by
LinkedIn Twitter