×

Irish Information Security Forum

Data Protection Commission publishes 2023 Annual Report

Source: DPC
Release Date: 29th May 2024

 

The Data Protection Commission has published its Annual Report for 2023.

 

The DPC issued 19 finalised decisions resulting in administrative fines totalling €1.55 billion, including:

 

  • In May 2023, the DPC announced the conclusion to a GDPR inquiry into Meta Platforms Ireland Limited concerning Data Transfers from the EU to the USA. The decision imposed a fine of €1.2 billion on Meta Ireland, in addition to an order to bring its processing operations into compliance.
  • In September 2023, the DPC issued its final decision in its inquiry into TikTok Technology Limited. The inquiry examined the processing of personal data relating to children by TikTok. The Decision ordered TikTok to bring its processing into compliance and imposed fines totalling €345 million.
  • In February 2023, the DPC issued its final decision in its inquiry into Bank of Ireland. This inquiry was in relation to a series of data breaches on the Bank of Ireland 365 app. The corrective powers exercised in this decision included a reprimand, a fine of €750,000 and an order to bring processing into compliance.
  • In January 2023, the DPC issued its final decision in its inquiry into Centric Health. The Inquiry was commenced following a ransomware attack affecting patient data held on Centric’s patient administration system where over 70,000 patients were affected. Some 2,500 patients were permanently affected as their data was deleted with no backup available. The Decision reprimanded Centric and imposed fines totalling €460,000

 

 

Dr Des Hogan, Chairperson, Commissioner for Data Protection commented:

“My fellow Commissioner, Dale Sunderland, and I would like to take this opportunity to acknowledge with deep gratitude for Commissioner Helen Dixon’s stewardship of the Commission over the past ten years. Commissioner Dixon was the sole Commissioner for Data Protection during her tenure which concluded in early 2024. Thanks to her leadership, and the commitment and tireless work of the DPC’s staff, we find ourselves taking over a respected and outward looking regulator; one with the values of vindicating the rights of the individual through fair and proportionate regulation.”

 

Commissioner Dale Sunderland reflected on what was a landmark year:

“2023 was a busy year in personal data rights protection. The year saw a significant increase in complaints dealt with by the Data Protection Commission with record fines issued and corrective orders imposed following cross-border and national inquiries. Throughout 2023, the DPC sought to uphold the individual’s right to the protection of their personal data. This critical work was greatly supported by Data Protection Officers and data protection staff and teams in organisations across the public, private and voluntary sectors who play a critical role in championing data protection rights, acting as a critical friend to those organisations by keeping the compliance conversation front and centre.”

 

Download and Read More

DPC Annual Report 2023 cover

 

IISF Logo

If you are interested in finding out more about the IISF, or would like to attend one of our Chapter Meetings as an invited guest, please contact the
IISF Secretary:

By email:
secretary@iisf.ie

By post:

David Cahill

Information Security

GPO, 1-117
D01 F5P2

Enhance your Cybersecurity knowledge and learn from those at the coalface of information Security in Ireland

 


Forum SPONSORS 

Invitations for Annual Sponsorship of IISF has now reopened.

Sponsorship of IISF Opportunity
(your logo & profile link here)

 

Sponsors are featured prominently throughout the IISF.IE website, social media channels as well as enjoying other benefits Read more

 

secured by edgescan digital security radar logo

© iiSf. All rights reserved. CRN: 3400036GH  - Privacy  - Sponsorship  - Cybersecurity News Index  - Cybersecurity Resources  - X  - Produced by
LinkedIn Twitter