WhatsApp has been hit with a $225m fine by Ireland’s Data Protection Commission after it failed to disclose enough information to users about the data shared with other Facebook companies.
According to Cyberscoop, the fine is the largest penalty the Irish regulator has instigated since the introduction of GDPR in 2018.
The DPC – which began its probe into WhatsApp in 2018 – found that Facebook, WhatsApp’s parent company, did not fully explain what interests the company used the personal data for or how the data was processed.
The ruling also requires WhatsApp to take ‘corrective measures’ in order to become GDPR-compliant. The company has said that it intends to appeal the fine.
Facebook is also currently facing a lawsuit from Max Schrems – a privacy activist – under GDPR due to the company’s handling of targeted ads.
Copyright © 2021 RegTech Analyst
Copyright © 2018 RegTech Analyst