- Topics
- Regions
- Events
- Webcasts
- Resources
- CW Exclusives
- Membership
“For tracking litigation, enforcement, and regulatory developments, Compliance Week
should be your prime source.”- Chief Compliance Officer and VP of Legal Affairs, Arrow Electronics
Meta fined $274M under GDPR for data scraping breach
By 
Neil Hodge2022-11-28T20:32:00
Meta Platforms was fined 265 million euros (U.S. $274 million) for failing to put in place adequate measures to protect users’ data after a leak compromised the personal details of more than half a billion individuals.
The Irish Data Protection Commission (DPC)—Meta’s European regulator—also reprimanded the company and imposed a range of corrective technical and organizational measures it must comply with within a three-month deadline.
In a decision adopted Nov. 25 and announced Monday, the data regulator said Meta infringed Article 25 of the General Data Protection Regulation (GDPR) over the way users’ details were “scraped” from public profiles from the date the EU’s privacy legislation went into effect on May 25, 2018, up until September 2019.
THIS IS MEMBERS-ONLY CONTENT
You are not logged in and do not have access to members-only content.
If you are already a registered user or a member, SIGN IN now.
Related articles
-
PremiumRecord Meta fine brings wider GDPR ramifications for EU-U.S. data transfers
Meta’s latest punishment for breaching the European Union’s General Data Protection Regulation will have far-reaching ramifications for companies both in Europe and beyond.
-
News BriefMeta fined record $1.3B in GDPR data transfer ruling
The Irish Data Protection Commission announced a record penalty of €1.2 billion (U.S. $1.3 billion) against Meta regarding its transfers of user data from the European Union to the United States in violation of the General Data Protection Regulation.
-
News BriefWhatsApp fined $5.9M for lawful processing GDPR violations
The Irish Data Protection Commission announced a fine of €5.5 million (U.S. $5.9 million) against WhatsApp under the General Data Protection Regulation for forcing users to consent to updated terms and conditions or lose access to the service.
More from Regulatory Enforcement
-
News BriefFCA dings Infinox in first fine under U.K. capital market reforms of 2018
The U.K. Financial Conduct Authority issued a landmark fine against trading platform Infinox Capital for failing to report “high-risk” transactions, the first-ever enforcement under a 2018 law.
-
News BriefKuCoin latest crypto firm to pay hefty price for violating BSA with $297M penalty
The Sechelles-based owner of cryptocurrency exchange KuCoin has agreed to pay nearly $300 million in penalties–and cease doing business in the U.S. for two years–to settle charges that it failed to properly monitor potential criminal activity on its network.
-
News BriefDOJ indicts five in remote IT work scheme to circumvent North Korean sanctions
Five people, including two Americans, allegedly duped U.S. companies into hiring North Koreans for contract IT work, and funneled millions in U.S. dollars to the sanctioned regime, the Department of Justice said.