A new report published by the Irish Council of Civil Liberties (ICCL) claims that Ireland's Data Protection Commission (DPC) is failing to enforce the EU General Data Protection Regulation (GDPR). The ICCL criticises the DPC's record saying, "Ireland continues to be the bottleneck of enforcement: it delivers few draft decisions on major cross-border cases. When it does eventually do so, other European enforcers then routinely vote by majority to force it to take tougher enforcement action."
In the five years since the GDPR came into effect, the DPC's fellow EU data protection authorities (DPAs) have overruled 75% of its decisions. In contrast, only one other case has been overruled in the same manner across the whole of the EU. The report also reports on EU DPA operating budgets, noting that the combined enforcement investment equates to around a third of a billion euros.
In a press release announcing the research, ICCL Senior Fellow Dr Johnny Ryan said, “Five years on, the data now show a stark failure to enforce the GDPR – particularly against Big Tech. That failure exposes everyone to serious digital hazards: discrimination, manipulation, information distortion, and invasive AI. We urge the European Commissioner for Justice, Didier Reynders, to finally take action.”
What is this page?
You are reading a summary article on the Privacy Newsfeed, a free resource for DPOs and other professionals with privacy or data protection responsibilities helping them stay informed of industry news all in one place. The information here is a brief snippet relating to a single piece of original content or several articles about a common topic or thread. The main contributor is listed in the top left-hand corner, just beneath the article title.
The Privacy Newsfeed monitors over 300 global publications, of which more than 4,350 summary articles have been posted to the online archive dating back to the beginning of 2020. A weekly roundup is available by email every Friday.