Ireland slaps Facebook with $18.7 million fine for EU privacy law breaches

Trouble for top US tech companies seems far from over, already facing regulatory scrutiny, in the latest US technology giant Facebook is slapped with a fine by Ireland authorities for breaching EU data privacy laws.

This is the latest action in Europe against the business practices of US tech companies. According to reports, the fine against the social media giant, which owns WhatsApp, Instagram and Facebook, amounted to a total of 17 million euros ($18.7 million) following an inquiry into 12 data breaches, said the Data Protection Commission (DPC).

EU member Ireland, which hosts the regional headquarters of a number of leading tech firms including Apple, Google and Twitter, has played a role in policing the bloc’s strict General Data Protection Regulations (GDPR).

Advertisement

‹

EVENT

Saksham Bharat 2026

A multi-stakeholder dialogue on skilling gap in Cybersecurity, Data Resilience and AI — and the roadmap to a Saksham Bharat.

📅 Tue, 26 May 2026

📍 Mumbai, Bengaluru, Delhi

Register Now →

EVENT

VeeamON 2026 Tour India - Mumbai

A VeeamON 2026 India Leadership Series Mumbai for senior public sector and government technology leaders.

📅 Tue, 26 May 2026

📍 Grand Hyatt, BKC

Register Now →

EVENT

Cyber Surakshit Uttar Pradesh

Find out strategies, frameworks and solutions for building a resilient and secure digital ecosystem across Uttar Pradesh.

📅 Thu, 28 May 2026

📍 Lucknow

Register Now →

EVENT

VeeamON 2026 Tour India - Bengaluru

A VeeamON 2026 India Leadership Series Bengaluru for senior public sector and government technology leaders.

📅 Wed, 03 Jun 2026

📍 JW Marriott Hotel

Register Now →

EVENT

VeeamON 2026 Tour India - Delhi

A VeeamON 2026 India Leadership Series Delhi for senior public sector and government technology leaders.

📅 Fri, 19 Jun 2026

📍 Shangri-La Eros

Register Now →

EVENT

Infosec Reimagined

Infosec Reimagined 2026 is the premier information security summit where top leaders—CISOs, CROs, CIOs, CTOs and risk executives—converge to redefine cyber resilience.

📅 Fri, 26 Jun 2026

📍 New Delhi

Register Now →

EVENT

Digital Senate

Digital Senate is a premier conference uniting government leaders, technologists and innovators to share ideas, success stories and strategies on digital governance, public sector transformation, cybersecurity and emerging technologies in India.

📅 Thu, 30 Jul 2026

📍 New Delhi

Register Now →

EVENT

CIO Prism

CIO Prism unites forward-thinking technology leaders to exchange transformative insights, shape digital strategies, and foster innovation, empowering enterprises to excel in an era of rapid technological change.

📅 Fri, 18 Sep 2026

📍 Goa

Register Now →

›

The Irish data watchdog said Meta’s platforms had “failed to have in place appropriate technical and organisational measures” in the context of the 12 personal data breaches.

The data breach notifications were received by the DPC over a six-month period between June 7, 2018 and December 4, 2018, it said.

Two European supervisory authorities working as part of the GDPR’s decision-making process raised objections to the initial DPC decision, but “consensus was achieved through further engagement between the DPC and the supervisory authorities,” the Irish commission said.

In September last year, Ireland hit WhatsApp with a record 225-million-euro fine following pressure from other European regulators to increase an initial penalty. In a draft finding submitted to other European regulators for approval, the DPC proposed imposing a fine of between 30 and 50 million euros, but a number of national regulators rejected the figure, triggering the launch of a dispute resolution process.

The GDPR, which came into force in 2018, has been viewed as a powerful weapon for EU members to curb the excesses of big tech companies, giving national watchdogs cross-border powers and the possibility to impose sizeable fines for data misuse.