The Irish Data Protection Commission announced a fine of € 450 thousand (approximately $ 546 thousand or more than 40 million rubles) to Twitter due to the leakage of user data. It is noteworthy that since the entry into force of the General Data Protection Regulation (GDPR) in the European Union in mid-2018, a large American technology company has been punished with a fine for the first time.
The Twitter data breach incident was disclosed in January 2019. In accordance with the GDPR, the company had to document and properly notify the regulator of the incident within 72 hours, but this was not done. As a result of this leak, tweets published in closed accounts became public.
“We take responsibility for this error and remain committed to protecting the privacy of our users’ data“- said a spokesman for Twitter, adding that the failure to notify the regulator of the incident was”unforeseen consequence of staffing», Which worked during the Christmas holidays at the end of 2018.
The investigation into this incident was actually completed back in May this year, but it took EU regulators several months after that to determine the amount of the fine. According to the GDPR, due to a data breach, the company could be fined up to 2% of its revenue, and Twitter’s volume in 2018 amounted to $ 60 million.The Irish regulator decided not to impose the maximum fine, since the data breach was deemed not deliberate and not systematic. After lengthy discussions, a decision was made to impose a fine of € 450,000.
If you notice an error, select it with the mouse and press CTRL + ENTER.