Skip to content

Irish Data Protection Commission

Ireland / EU

Lead GDPR authority for most US tech firms with EU headquarters in Dublin. The most consequential privacy regulator by fine volume.

Official source →

9 penalties · ≈ $4B imposed

9 penalties

Meta · Facebook · 2023

Meta's record €1.2B GDPR fine over EU-US transfers

Under appeal

The Irish DPC fined Meta for continuing to transfer EU users' personal data to US servers after the Schrems II ruling, exposing that data to potential US surveillance without adequate safeguards. It is the largest GDPR fine ever issued.

DPC · Ireland / EU€1.2B$1.3B

TikTok · 2025

TikTok fined €530M over EU-China data transfers

Final

The Irish DPC fined TikTok for unlawfully transferring EU users' data to China without ensuring equivalent protection, and for related transparency failures.

DPC · Ireland / EU€530M$572M

Meta · Instagram · 2022

Instagram fined €405M over children's data

Final

The DPC found that Instagram business accounts publicly exposed children's phone numbers and email addresses by default.

DPC · Ireland / EU€405M$437M

Meta · 2023

Meta fined €390M over the legal basis for ads

Final

The DPC found that Facebook (€210M) and Instagram (€180M) relied on a terms-of-service contract, rather than valid consent, to justify personalised advertising. The decision forced a change in how Meta seeks a legal basis for ads.

DPC · Ireland / EU€390M$421M

TikTok · 2023

TikTok fined €345M over children's default settings

Final

The Irish DPC found that TikTok set children's accounts to public by default and had weak age-assurance safeguards, exposing young users' content.

DPC · Ireland / EU€345M$372M

Microsoft · LinkedIn · 2024

LinkedIn fined €310M over behavioural advertising

Final

The Irish DPC found that LinkedIn, owned by Microsoft, processed members' personal data for behavioural advertising without a valid legal basis and without adequate transparency.

DPC · Ireland / EU€310M$335M

Meta · Facebook · 2022

Meta fined €265M over data scraping

Final

The DPC found that design failures allowed the scraping of roughly 533 million users' phone numbers and personal details, which were later leaked online.

DPC · Ireland / EU€265M$286M

Meta · WhatsApp · 2021

WhatsApp fined €225M over transparency

Final

The DPC found that WhatsApp failed to properly explain to users and non-users how their data was processed and shared with other Meta companies.

DPC · Ireland / EU€225M$243M

Meta · Facebook · 2022

Meta fined €17M over 2018 data breaches

Final

The DPC fined Meta over a series of twelve data breaches in 2018, finding it had failed to have appropriate technical and organisational measures in place.

DPC · Ireland / EU€17M$18.4M