WhatsApp slapped with $267m GDPR fine for user privacy shortcomings

WhatsApp has been hit with a $225m fine by Ireland’s Data Protection Commission after it failed to disclose enough information to users about the data shared with other Facebook companies.

According to Cyberscoop, the fine is the largest penalty the Irish regulator has instigated since the introduction of GDPR in 2018.

The DPC – which began its probe into WhatsApp in 2018 – found that Facebook, WhatsApp’s parent company, did not fully explain what interests the company used the personal data for or how the data was processed.

The ruling also requires WhatsApp to take ‘corrective measures’ in order to become GDPR-compliant. The company has said that it intends to appeal the fine.

Facebook is also currently facing a lawsuit from Max Schrems – a privacy activist – under GDPR due to the company’s handling of targeted ads.

Copyright © 2021 RegTech Analyst

Enjoyed the story? 

Subscribe to our weekly RegTech newsletter and get the latest industry news & research

Copyright © 2018 RegTech Analyst

Investors

The following investor(s) were tagged in this article.