1.2 billion euro fine for Facebook as a result of EDPB binding decision

24 maggio 2023

Following the EDPB’s binding dispute resolution decision of 13 April 2023, Meta Platforms Ireland Limited (Meta IE) was issued a 1.2 billion euro fine following an inquiry into its Facebook service, by the Irish Data Protection Authority (IE DPA). This fine, which is the largest GDPR fine ever, was imposed for Meta’s transfers of personal data to the U.S. on the basis of standard contractual clauses (SCCs) since 16 July 2020. Furthermore, Meta has been ordered to bring its data transfers into compliance with the GDPR.

In its binding decision of 13 April 2023, the EDPB instructed the IE DPA to amend its draft decision and to impose a fine on Meta IE. Given the seriousness of the infringement, the EDPB found that the starting point for calculation of the fine should be between 20% and 100% of the applicable legal maximum. The EDPB also instructed the IE DPA to order Meta IE to bring processing operations into compliance with Chapter V GDPR, by ceasing the unlawful processing, including storage, in the U.S. of personal data of European users transferred in violation of the GDPR, within 6 months after notification of the IE SA’s final decision.

The IE DPA's final decision incorporates the legal assessment expressed by the EDPB in its binding decision, adopted on the basis of Art. 65(1)(a) GDPR after the IE DPA, as lead supervisory authority (LSA), had triggered a dispute resolution procedure concerning the objections raised by several concerned supervisory authorities (CSAs). Among others, CSAs issued objections aiming to include an administrative fine and/or an additional order to bring processing into compliance*.

The final decision taken by the IE DPA is available in the Register for Decisions taken by supervisory authorities and courts on issues handled in the consistency mechanism.

Archivio news

 

News dello studio

mag24

24/05/2023

1.2 billion euro fine for Facebook as a result of EDPB binding decision

Following the EDPB’s binding dispute resolution decision of 13 April 2023, Meta Platforms Ireland Limited (Meta IE) was issued a 1.2 billion euro fine following an inquiry into its Facebook

mag17

17/05/2023

BEREC publishes its Opinion on the draft Gigabit Recommendation

National regulatory authorities (NRAs) will need sufficient time to adjust their regulatory framework and, therefore, the draft Gigabit Recommendation must foresee an appropriate transitional period

mag17

17/05/2023

Diagnose your SME’s Cybersecurity and Scan for Recommendations

The European Union Agency for Cybersecurity (ENISA) releases a tool to help Small and Medium Enterprises (SMEs) assess the level of their cybersecurity maturity. The tool includes the following features:  Cybersecurity

News Giuridiche

giu2

02/06/2023

Costituzione della Repubblica Italiana in PDF

Scarica l'eBook gratuito contenente la

giu1

01/06/2023

Atti chiari e sintetici: il decreto ministeriale

Atti processuali con le keywords. Cosa