Ire­land: Decis­i­ons regar­ding Twit­ter, Whats­App, Face­book and Insta­gram under con­sul­ta­ti­on or preparation

The Irish Data Pro­tec­tion Super­vi­so­ry Aut­ho­ri­ty reportsthat it sub­mits to the other super­vi­so­ry aut­ho­ri­ties invol­ved a draft decis­i­on against Twit­ter (based in Ire­land) pur­su­ant to Art. 60 DGSVO. The decis­i­on con­cerns the que­sti­on of whe­ther Twit­ter has com­plied with the data breach noti­fi­ca­ti­on requirements.

This decis­i­on is in the con­text of other deve­lo­p­ments on “big tech.” The Irish aut­ho­ri­ty has also sent a preli­mi­na­ry draft decis­i­on to Whats­App Ire­land befo­re this is also con­sul­ted with other super­vi­so­ry aut­ho­ri­ties. In the case of Whats­App, the issue is the requi­re­ments of Art. 12 et seq. GDPR on trans­pa­ren­cy (also regar­ding data dis­clo­sure to Facebook).

Fur­ther decis­i­ons will be made regar­ding Face­book (legal basis for data pro­ce­s­sing), Insta­gram and again Whats­App pre­pared. The decis­i­on of the ECJ in the case of Schrems (Case C‑311/18) is then expec­ted on July 16, 2020 (effec­ti­ve­ness of the stan­dard con­trac­tu­al clau­ses; cf. here).