Last September, the technology company appealed to the Irish High Court a fine of 405 million euros imposed by the DPC on the Instagram social network, integrated in Meta, for its management of minors’ data.
The Irish Data Protection Commission (DPC), the main regulator in the field of data protection in the European Union, reported Monday that it has imposed a fine of 265 million euros on Meta, the parent company of Facebook.
The American company, which has its European base of operations in Dublin, has been sanctioned for a failure in its security systems that caused the leaking of personal data of millions of users between 2018 and 2019.
The DPC launched this investigation in April of last year to determine how the names, phone numbers and email addresses of 533 million customers got onto an internet forum on hacking.
Then, Facebook claimed that it had repaired that “vulnerability” in 2019 and that the aforementioned information, part of which had already appeared in cyberspace “several years ago”, was not obtained by hacking, but through the so-called “scraping”.
Meta Errors with users from Ireland
Scraping is a technique that allows data to be obtained from the reading of a website thanks to automated software.
After this, that information can be distributed in online forums.
However, the Irish regulator today determined that Meta breached Article 5 of the EU’s General Data Protection Regulation (GDPR).
“Because this data set was so large, we ultimately imposed a significant fine,” DPC chief Helen Dixon said in a statement.
He also recalled that the “risks” for affected individuals are “considerable”, since they expose them to “scams, spam, fishing” and “lose control of their data.”
“We have made changes to our systems during the time in question, including removing the ability to scrape our features,” Meta said in a note.
This is the highest financial penalty imposed by the commission.