Furthermore, only 44% of the final decisions at the EU level include corrective measures, such as fines or orders to stop processing. The report authors noted that less than 10% of the employees across EU data protection authorities are tech specialists. “The Irish government and the governments of all EU member states need to allocate adequate resources to their national Data Protection Authorities in order to allow them to successfully carry out their functions as required under the GDPR.” The German authority alone counts for one-third of the entire EU spending.įor Paolo Balboni, a privacy professor at the Maastricht University, the Irish authority is not the only one to blame. The report found EU countries continuing to increase the DPAs’ budgets, but at an increasingly lower rate. However, the report also stressed weaknesses in the overall GDPR enforcement architecture.Įnforcement is also highly concentrated in a handful of countries, as France, Germany, Ireland, Luxembourg, Netherlands, Spain and Sweden receive more than 70% of the total complaints. The Irish DPC also came in for criticism by its peers for its ‘timid’ approach to GDPR enforcement. Ireland hit Facebook’s WhatsApp with a record 225 million euro ($266 million) fine on Thursday following an inquiry into the messaging app’s transparency around sharing personal data with other Facebook companies. Irish data privacy watchdog fines WhatsApp 225 million euros The report compares the DPC’s performance against that of the Spanish data protection authority, which has drafted ten times more decisions despite having an annual budget of € 15.8 million, below the Irish € 19 million. However, almost three years and a half since the GDPR entered into force, the DPC has only issued four draft decisions, leaving almost 98% of cases unaddressed. The Irish DPC is looking into 164 cross-border cases of alleged GDPR breaches. The Commission continues to closely monitor the cooperation in cross-border cases,” the Commission representative added. “Several steps have recently been taken in this direction within the Board. The European Parliament voted on Thursday (20 May) in favour of a resolution calling on the European Commission to open an infringement procedure against Ireland for failing to enforce the General Data Protection Regulation (GDPR).Ī Commission spokesperson told EURACTIV that “we are aware, as stressed in our 2020 GDPR report, that the efficiency of the cooperation between data protection authorities needs to be further improved” and that the letter will be carefully assessed. MEPs call for infringement procedure against Ireland
0 Comments
Leave a Reply. |