Twitter Fined 450,000 Euros over GDPR Document Notification

Forum Moderators: not2easy & rumbas

Message Too Old, No Replies

Twitter Fined 450,000 Euros over GDPR Document Notification

engine

3:37 pm on Dec 15, 2020 (gmt 0)

Ireland's Data Protection Commission fines twitter €450,000 as it found that "Twitter infringed Article 33(1) and 33(5) of the GDPR in terms of a failure to notify the breach on time to the DPC and a failure to adequately document the breach."

[dataprotection.ie...]

JorgeV

12:57 pm on Dec 16, 2020 (gmt 0)

Hello,

This is cheap, considering that the GDPR plans a fine "up to" 4% of global earning, which, in the case of Twitter could have been $140 millions.

The Irish DPC is investigating tens of GDPR related cases, sine lot of non-EU companies are registered in Ireland.

tangor

12:53 am on Dec 17, 2020 (gmt 0)

The quibble on small fine is probably centered around "failure to notify the breach on time" as it does appear that t did eventually file notice. Wonder if those managing GDPR are doing their collections based on Midas (don't kill the goose that lays the golden eggs)?

tangor

1:41 am on Dec 17, 2020 (gmt 0)

More here:

Article 33(1) requires that notification of a breach be given "without undue delay and, where feasible, not later than 72 hours after having become aware of it." Article 33(5) is more concerned with the documentation process around it. The DPC considered the infringements "to be moderately serious in terms of their gravity" and upped the amount from the previous range in the draft decision ($150,000-$300,000).

[theregister.com...]