Digital Policy Alert logo

Ireland: Data Protection Commission fined WhatsApp EUR 225 million for violations of GDPR user privacy rules

Policy overview

Description

Data Protection Commission fined WhatsApp EUR 225 million for violations of GDPR user privacy rules

On 2 September 2021, the Irish Data Protection Commission (DPC) concluded its investigation into WhatsApp for violations of the General Data Protection Regulation (GDPR). The DPC sanctioned WhatsApp with a fine of EUR 225 million and further handed …

Scope

Policy Area
Data governance
Policy Instrument
Data protection regulation
Regulated Economic Activity
messaging service provider
Implementation Level
national
Government Branch
executive
Government Body
data protection authority

Complete timeline of this policy change

Hide details
2018-12-10
under deliberation

On 10 December 2018, the Irish Data Protection Commission (DPC) opened an investigation into WhatsA…

2021-06-03
under investigation

On 3 June 2021, the Irish Data Protection Commission (DPC) escalated resolution of its data protect…

2021-07-28
in force

On 28 July 2021, the dispute over a draft decision made by the Irish Data Protection Commission (DP…

2021-09-02
in force

On 2 September 2021, the Irish Data Protection Commission (DPC) concluded its investigation into Wh…

2022-12-07
in force

On 7 December 2022, the General Court of the European Union issued a statement dismissing an action…

2023-02-17
under appeal

On 17 February 2023, WhatsApp Ireland Ltd lodged an appeal with the Court of Justice of the Europea…

2025-03-27
under investigation

On 27 March 2025, the Advocate General issued an opinion in WhatsApp Ireland Ltd v European Data Pr…

2026-02-10
in force

On 10 February 2026, the Court of Justice of the European Union (CJEU) set aside the General Court’…