The privacy watchdog issued 11 finalised inquiry decisions in 2024, including high-profile decisions on inquiries into LinkedIn and Meta, which alone made up 87 per cent of the fines total.

Overall, the DPC received 11,091 new cases from individuals in 2024 and concluded 10,510 cases.

Of all cases received in 2024, 2,673 progressed to the complaint handling process. The DPC resolved 2,357 complaints through the formal complaint-handling process (Including 1,367 complaints received prior to 2024).

The DPC concluded 145 valid cross-border complaints (as EU/EEA lead supervisory authority). Some 82 per cent of cross-border complaints received since 2018, where DPC is lead supervisory authority, have now been concluded.

Total valid breach notifications received in 2024 was 7,781, representing an 11 per cent increase on 2023, with 81 per cent of notifications received in 2024 concluded by year end. Half of these breaches were a result of correspondence being sent to the wrong recipient.

The DPC provided input and observations on over 56 pieces of proposed legislation in 2024, a significant increase on 2023, when this figure was 37.

Chairperson Dr Des Hogan said: “The protection of our personal data is more important than ever as our daily transactions now routinely occur through technologies.

“The DPC’s wide range of activities during the last year points to how fair, consistent regulation can lead to individuals across Europe trusting that their personal data is being used in a lawful and safe manner and that they have control over their data.”

To coincide with the annual report, the DPC has also published the findings of its first-ever public attitudes survey, conducted in May 2025.

It found that almost three in four people believe it to be either quite or very important that organisations designing, developing or using innovative new technologies, products and services comply with data protection requirements, even if it might mean a delay in implementation.

Two out of three people surveyed claimed that they would trust an organisation a lot less if they misused personal data. Only four per cent claimed it would make no difference.

Asked about their concerns around technology and data protection, 77 per cent were concerned with how children’s personal data is being shared and used online; 76 per cent were concerned with how personal data is used to create a digital profile of themselves which could can be shared, sold or traded; and 61 per cent were concerned with the use of AI.

The results found that generally, people aged 18-34 were less concerned with most aspects of technology and safety of personal data. Those aged 55+ were significantly more concerned.

Just over half of those surveyed believe that data protection laws ensure companies using information do so responsibly, with one in five not aware of how the law effects them.

Seven in 10 found that they could trust the Data Protection Commission to uphold their rights to have their personal data protected.

Half of those who had interacted with the Data Protection Commission had a more positive opinion of the DPC following that interaction, with only three per cent having a more negative view.

Commissioner Dale Sunderland said: “The results of this public attitudes survey provide valuable insight into how the public views data protection and the role of the Data Protection Commission.

“The findings indicate strong levels of awareness and recognition of the importance of data protection, particularly in the context of emerging technologies, products and services.

“The survey also highlights public concerns and expectations around how personal data is used by organisations, while revealing notable differences in perspectives across age groups and regions.

“This insight is critical as we undertake the mid-term review of the DPC regulatory strategy, ensuring our priorities remain focused and responsive in delivering on our responsibilities as a data protection authority.”