The fine is the second largest on any organization for infringing on the European data protection laws that came into effect in 2018, Rte.ie reports. The fine follows a three-year investigation that was centered around determining whether the messaging platform had met its obligations under the General Data Protection Regulation (GDPR). WhatsApp’s role in providing information and the transparency of the specific information to both users and non-users of the company’s service was the main basis of the probe. The investigation was concluded in December last year and submitted to EU regulators for further direction as demanded by the GDPR. Interestingly, only eight of the 40 EU authorities disagreed with the DPC’s conclusion on the matter alongside the regulator’s proposed fine of €50m. Due to lack of a consensus, the DPC forwarded the cases to the European Data Protection Board (EDPB), where the agency was compelled to enforce the ruling at the end of July. WhatsApp is also required to bring its processing into compliance by taking a range of specific actions.
WhatsApp anticipated fine
In response, WhatsApp has disagreed with the ruling, although the company had set aside €77.5 million in anticipation of a possible fine. However, sources close to the company indicated that rather than making its policy shorter and less complicated, the ruling possibly means that it would have to add additional information to its privacy policy. Elsewhere in 2019, Google was fined €50m by the French data protection authority over lack of transparency. Besides WhatsApp fine, the DPC investigates other leading tech firms, including Facebook, Apple, Instagram, Google, and Twitter. [robinhood]
