General Data Protection Regulation (GDPR), Ireland, Corporate Counsel

Irish Data Protection Commission Fines TikTok Over EEA Data Transfers to China

Maynard Nexsen on 5/12/2025

On May 2, 2025, the Irish Data Protection Commission (“DPC”) issued a decision, as lead supervisory authority, finding that TikTok infringed the GDPR regarding (a) its cross-border transfers of EEA User Data to China, and (b)...more

EU: DLA Piper GDPR Fines and Data Breach Survey: January 2025

DLA Piper on 1/21/2025

The seventh annual edition of DLA Piper’s GDPR Fines and Data Breach Survey has revealed another significant year in data privacy enforcement, with an aggregate total of EUR1.2 billion (USD1.26 billion/GBP996 million) in...more

DSIR Deeper Dive: Absent Legislation, Privacy Regulators Offer Guidance on AI

BakerHostetler on 10/11/2023

By now, many of us are using AI, advising others about how to use AI, and waiting for some legislative miracle to give us some guardrails for what we can or cannot be doing with AI. A lot of effort has been put into tracking...more

This Is Not a Test: The Significant Impacts of the Ireland Data Protection Commission’s Meta Decision

Miller Nash LLP on 6/6/2023

It shouldn’t come as a surprise that the European Data Protection Board (EDPB), through Ireland’s Data Protection Commission (DPC), issued another fine against a large US technology company. What may come as a surprise is the...more

Meta Fined EUR 1.2 Billion for Violating GDPR

Faegre Drinker Biddle & Reath LLP on 5/24/2023

On 22 May 2023, the Irish Data Protection Commission (DPC) issued Meta Platforms Ireland Limited (Meta Ireland) with a EUR 1.2 billion (approximately 1.3 billion U.S. dollar) fine for breaches of the GDPR with respect to...more

One-Two Punch: Lessons from the Irish DPC’s WhatsApp Decision

Wyrick Robbins Yates & Ponton LLP on 2/3/2023

2023 continues to be a busy year for European data protection authorities. Following its release of the Irish Data Protection Commission’s (DPC’s) binding decisions in cases against Facebook and Instagram, the European Data...more

Schrems II and EU-U.S. Personal Information Transfers: Where Are We, and What’s Next?

Akerman LLP on 8/5/2020

The Court of Justice of the European Union (CJEU) recently issued a decision with global implications for data transfers from the EU in a case referred to the CJEU from the Irish Data Protection Commissioner, colloquially...more

How to Comply with International Transfers – The Regulatory Guidance Overview on the “Schrems II” Decision

Orrick, Herrington & Sutcliffe LLP on 7/30/2020

EDPB and data protection authorities’ views and statements on the “Schrems II”- decision by the CJEU - On 16 July, 2020, the European Court of Justice (“CJEU“) passed a decision invalidating the EU-US Privacy Shield and...more

No Grace Period After Invalidation of EU-US Privacy Shield in Schrems II

Morgan Lewis on 7/28/2020

As discussed in an earlier alert, the Court of Justice of the European Union in a landmark decision in the Schrems II case invalidated the EU-US Privacy Shield framework, which was widely used by thousands of US organizations...more

Guidance from E.U. Supervisory Authorities on Data Processing in a Time of COVID-19

Orrick, Herrington & Sutcliffe LLP on 3/17/2020

The European Data Protection Board (EDPB) and a number of European data protection supervisory authorities have recently issued guidance on processing personal data, including special categories of personal data (i.e., health...more

What Companies Can Learn From CNIL’s Privacy Consent Cases on Targeted Marketing

Latham & Watkins LLP on 3/28/2019

The closure of four cases involving targeted advertising provides lessons for navigating compliance standards under the GDPR. The recent closure of cases brought by the French Data Protection Authority (CNIL) against four...more

General Data Protection Regulation (GDPR) › Ireland › Corporate Counsel

"My best business intelligence, in one easy email…"