Twitter GDPR case delayed as EU regulators disagree on penalty

Nieuws Mobiel Europa 21 AUG 2020
Twitter GDPR case delayed as EU regulators disagree on penalty

A potential fine against Twitter for violating EU privacy law has been delayed, due to disagreement among national regulators in the EU. Ireland's Data Protection Commissioner proposed a settlement of the case in May, but has since had to launch an arbitration procedure, after the consultation with other EU national regulators led to differing opinions, the Wall Street Journal reports. 

Ireland is the lead regulator for all Twitter's EU operations. However, the General Data Protection Regulation requires national regulators to consult with their counterparts in other countries when a decision has an impact on multiple countries. 

The case concerns a security hole that Twitter said it fixed in January 2019. Over a period of more than four years, the breach exposed the private tweets of some users. Ireland’s data commission said in its 2019 annual report that the focus of the case is on whether Twitter fulfilled its obligation for a timely notification of the breach. This can result in fines of up to 2 percent of annual turnover under the GDPR. 

A draft decision on the case was sent to EU data protection regulators in May. Further discussions could not resolve their disagreement, so the Irish watchdog has launched a dispute-resolution process with the European Data Protection Board, the umbrella organisation for the regulators. It's not known what the objections to the draft decision were. 

 The EDPB now has one month to reach a two-thirds majority among member states and if that fails, a further month to seek an absolute majority. If it still can’t find agreement, the chair of the board will cast the deciding vote.

Categories:

Mobiel

Companies:

Twitter

Regions:

Europa

Tags:

Messaging, Regulations, Information services, Legislation - Lawsuits

Related Articles

EUROPA 19 JAN 2022

EDPB adopts updated right of access and cookie consent guidelines

The European Data Protection Board (EDPB) said its January plenary session agreed to adopt new guidelines on the right of access in different situations as well as a letter calling for a consistent interpretation of cookie consent. The adopted guidelines provide clarifications on the scope of the right of access, the information the controller has to provide to the data subject, the format of the access request, the main modalities for providing access and the notion of manifestly unfounded or excessive req

EUROPA 14 JUN 2021

EU proposes USD 425 mln privacy fine against Amazon - report

Luxembourg's data-protection commission, the CNPD, has circulated a draft petition for fines to be imposed on Amazon across the EU's 27 member states due to alleged breaches of European data privacy laws, reports the Wall Street Journal, citing unnamed sources. The proposed fine amounts to more than USD 425 million, which would be the biggest penalty imposed since Europe's General Data Protection Regulation (GDPR) came into force in 2018.

EUROPA 15 DEC 2020

Twitter fined EUR 450,000 by DPC for breach of GDPR regulations

Twitter has been fined EUR 450,000 by Ireland's Data Protection Commission (DPC) for a breach of the EU's GDPR regulations. The Irish privacy watchdog is in charge of monitoring Twitter's operations across the EU. 

EUROPA 10 DEC 2020

Twitter, Vimeo, WordPress push for EU flexibility in new rules to take down illegal content

Twitter, Vimeo, Mozilla and WordPress.com's owner Automattic asked the EU to take a flexible strategy towards harmful and illegal online content instead of blanket rules requiring content removal. The companies said such an approach would help preserve an open internet. 

EUROPA 4 SEP 2020

EDPB sets up taskforce to deal with Schrems II complaints

The European Data Protection Board (EDPB) has adopted a number of new guidelines and created a taskforce on complaints following the CJEU Schrems II judgment at its 37th plenary session in Brussels. A total of 101 identical complaints have been lodged with EEA data protection authorities against several controllers in the EEA member states regarding their use of Google / Facebook services which involve the transfer of personal data after privacy activist Max Schrems won a new case at the EU Court of Justice

VERENIGDE STATEN 4 AUG 2020

Twitter expecting FTC fine of USD 150-250 mln for user data violations

Twitter may have to pay a fine of USD 150-250 million for violating an agreement with the FTC to protect user privacy. The company said in a SEC filing that it received a draft complaint from the FTC alleging that the company misused data collected on users for security services. 

EUROPA 25 MAY 2020

Irish regulator progresses in GDPR cases against Twitter, WhatsApp, Facebook

The Irish Data Protection Commission (DPC) announced it's making progress on investigations into major social media companies thought to have violated the EU's General Data Protection Regulation. This includes procedures against Twitter, WhatsApp and Facebook.

WERELD 3 DEC 2019

Twitter launches Twitter Privacy Center, updates global privacy policy and shifts international accounts

Twitter said its work around privacy has three areas of focus: fixing "technical debt" or bringing older systems up to current privacy standards; building privacy into products launched (privacy by design); and keeping the company accountable to its users and their data. 

WERELD 2 SEP 2019

Hackers break into Twitter account of CEO Dorsey

Hackers broke into the account of Twitter CEO Jack Dorsey late last week, Reuters reported. Twitter was able to secure the account but not before the perpetrators sent a number of public tweets and retweets that included racial slurs and curse words to Dorsey's 4 million followers. The tweets were deleted less than an hour after the incident and some Twitter accounts appeared suspended, the report noted.

WERELD 4 MAY 2018

Twitter tells users to change password after discovering security hole

Twitter has advised all its users to change their password after detecting a security vulnerability in its systems. The company said it recently identified a bug that stored passwords unmasked in an internal log. It has fixed the bug, and an investigation found no indication of breach or misuse.

Just In

19 DEC 16:42

SLT-Mobitel launches 5G network in Sri Lanka

19 DEC 16:19

Dialog Axiata launches 5G network, connects 1.5 million subscribers

19 DEC 15:56

UK govt to ban AI-enabled nudification apps to protect women, girls

19 DEC 15:42

3 UK launches last-minute Christmas sale

Commentary

13:56

Video market set for slower growth ahead

11:38

Netflix buys Warner Bros to deepen content catalogue

11:11

KPN's mixed performance in Q3 raises questions for strategy day

15:26

Stock markets breaking records but what happened to Odido's IPO plans?

Background

01:04

The week in telecom: Wi-Fi bolt-ons take off to boost broadband growth, video market works on consolidation

01:39

The week in telecom: Netflix wins bidding for Warner Bros, Apple poaches new execs, Samsung debuts trifold

13:51

Proximus vs. Telenet: Proximus performs better in Q3 while Telenet uses up cash

14:16

Proximus Domestic still struggling with low margins

Complete profile

Before downloading the whitepaper, we would like to ask you to complete your profile with company and position. After confirming you will receive the white paper.