Privacy

Northern Ireland's Independent Commission for Reconciliation and Information Recovery (ICRIR) has apologised for a "limited data breach" which disclosed the names of 25 people. The legacy body said it mistakenly disclosed the names — principally of individuals who were requesting investigation

Ireland's Data Protection Commission (DPC) is taking part in Europe-wide enforcement actions focused on the "right to be forgotten". The European Data Protection Board (EDPB) last week announced its co-ordinated enforcement framework (CEF) action for 2025, involving 32 data protection authorities ac

William Fry lawyers Rachel Hayes, Adele Hall and Aoife Keenan examine a Circuit Court decision awarding €7,500 in a personal data breach claim against a government agency. In M.H. v Child and Family Agency, a 2023 ex tempore judgment, the Circuit Court awarded the plaintiff €7,50

Matheson partner Davinia Brennan considers a recent decision clarifying the definition of "personal data breach". The Irish Data Protection Commission (DPC) recently imposed a €91 million fine on Meta Platforms Ireland Limited (MPIL), having found that it violated a number of provisions of the

Ireland's Data Protection Commission (DPC) has signed a joint declaration on AI alongside data protection authorities from the UK, Australia, South Korea and France. The two-page document reaffirms the authorities' commitment to implementing data governance that promotes innovative and privacy-

The General Court of the European Union has dismissed a challenge by Ireland's Data Protection Commission (DPC) to the powers of the European Data Protection Board (EDPB). Today's judgment from the Tenth Chamber of the General Court affirms the EDPB's authority to instruct national supervisory autho

Northern Ireland firm Carson McDowell has marked World Data Protection Day with the launch of a new specialist data action response team (DART).

Donald Trump's return to the White House has put the legality of EU-US data transfers in doubt once again, privacy campaigners have warned. Three of the four sitting members of the US Privacy and Civil Liberties Oversight Board (PCLOB) have reportedly been sacked by the new president, leaving the wa

The Competition and Consumer Protection Commission (CCPC) has been given responsibility for enforcing the EU Data Governance Act (DGA) in Ireland. The DGA aims to increase trust in data sharing by establishing a harmonised framework for data sharing and setting out certain basic requirements for wha

The Data Protection Commission (DPC) has published a new data protection toolkit for schools. The 73-page resource aims to assist schools in meeting their data protection obligations when processing the personal data of children.

Facebook owner Meta has been fined €251 million by the Data Protection Commission (DPC) following a personal data breach. Around 29 million Facebook accounts globally, including around three million based in the EU/EEA, were impacted by a data breach reported by Meta Platforms Ireland Limited (

Maynooth University has been fined €40,000 following a personal data breach. The Data Protection Commission (DPC) last week announced its final decision in an inquiry which it commenced on an own-volition basis in July 2019.

Nearly eight in 10 in-house lawyers have received a data subject access request (DSAR) from an employee or a customer in the last 12 months, a poll conducted by William Fry suggests.

LinkedIn has been slapped with a €310 million fine by Ireland's Data Protection Commission in connection with behavioural analysis and targeted advertising. The inquiry into LinkedIn Ireland Unlimited Company was launched by the DPC, in its role as the lead supervisory authority for LinkedIn, f

Ryanair is facing a Data Protection Commission (DPC) inquiry into its customer verification process, which includes the use of facial recognition technology. The DPC has received a number of complaints regarding the budget airline's practice of requesting additional ID verification from customers wh