Ireland's DPC Takes Major Step in Data Privacy Regulation, Targeting WhatsApp
Ireland's Data Protection Commission (DPC) has taken a significant step in regulating data privacy by sending a draft decision to other EU authorities for review. This move involves WhatsApp's data sharing practices and could set a precedent for transparency in the industry.
The DPC's draft decision centres around WhatsApp's compliance with Articles 12-14 of the GDPR, which govern transparency in data processing. This is only the second such cross-border GDPR case where the DPC has issued a draft decision.
WhatsApp, in response to criticism, has postponed its new data privacy policy by three months. Users will not face account loss on February 8, providing more time for review and acceptance of the updated terms. Meanwhile, a 2018 case regarding data transfer transparency between Facebook and WhatsApp is nearing a final decision, which is expected to establish a standard for WhatsApp's transparency. The DPC previously fined Twitter 450,000 euros in December 2021 for a GDPR breach, demonstrating its commitment to enforcing data protection regulations.
The DPC's draft decision on WhatsApp's data sharing practices marks a crucial step in ensuring transparency and protecting user data. As the final decision in the 2018 case approaches, it is expected to set a standard for WhatsApp's data transfer transparency, potentially influencing the wider tech industry.
