1.2 billion euro fine for Facebook as a result of EDPB binding decision

24 maggio 2023

Following the EDPB’s binding dispute resolution decision of 13 April 2023, Meta Platforms Ireland Limited (Meta IE) was issued a 1.2 billion euro fine following an inquiry into its Facebook service, by the Irish Data Protection Authority (IE DPA). This fine, which is the largest GDPR fine ever, was imposed for Meta’s transfers of personal data to the U.S. on the basis of standard contractual clauses (SCCs) since 16 July 2020. Furthermore, Meta has been ordered to bring its data transfers into compliance with the GDPR.

In its binding decision of 13 April 2023, the EDPB instructed the IE DPA to amend its draft decision and to impose a fine on Meta IE. Given the seriousness of the infringement, the EDPB found that the starting point for calculation of the fine should be between 20% and 100% of the applicable legal maximum. The EDPB also instructed the IE DPA to order Meta IE to bring processing operations into compliance with Chapter V GDPR, by ceasing the unlawful processing, including storage, in the U.S. of personal data of European users transferred in violation of the GDPR, within 6 months after notification of the IE SA’s final decision.

The IE DPA's final decision incorporates the legal assessment expressed by the EDPB in its binding decision, adopted on the basis of Art. 65(1)(a) GDPR after the IE DPA, as lead supervisory authority (LSA), had triggered a dispute resolution procedure concerning the objections raised by several concerned supervisory authorities (CSAs). Among others, CSAs issued objections aiming to include an administrative fine and/or an additional order to bring processing into compliance*.

The final decision taken by the IE DPA is available in the Register for Decisions taken by supervisory authorities and courts on issues handled in the consistency mechanism.

Archivio news

 

News dello studio

dic6

06/12/2023

Disposizioni per il contrasto della violenza sulle donne e della violenza domestica

Con la Legge 24 novembre 2023, n. 168, il Legislatore mira a rafforzare le misure per il contratto della violaziona sulle donne e della violenza domestica. Tra le misure finalizzate a inter alia potenziare

dic6

06/12/2023

Commission sends request for information to Meta under the Digital Services Act

The European Commission has formally sent Meta a request for information under the Digital Services Act (DSA). The Commission is requesting Meta to provide additional information on the measures

dic6

06/12/2023

La Commissione lancia una nuova banca dati per monitorare i termini e le condizioni dei servizi digitali

La Commissione europea ha lanciato la banca dati dei termini e delle condizioni dei servizi digitali, che contiene i termini e le condizioni dei servizi digitali, con particolare attenzione alle piattaforme

News Giuridiche

dic7

07/12/2023

Esame avvocato, il podcast: prova orale in aula virtuale (ep.12)

<p>A differenza della prova scritta,

dic7

07/12/2023

L’utilizzo di investigatori privati nei controlli difensivi

Inutilizzabilità assoluta delle risultanze