Privacy

Kennedys lawyers Gearóid Corrigan and Sinead Reilly explore a recent decision of the Supreme Court in relation to a data breach claim for distress and anxiety. Do claims for distress and anxiety resulting from a data breach require authorisation from the Injuries Resolution Board? Ireland&rsq

Germany's data protection watchdog is seeking the input of Irish stakeholders as part of a public consultation into AI and memorisation. The consultation is intended to contribute to the development of data protection-compliant approaches for dealing with personal data in the context of large langua

New guidance on protecting the personal data of vulnerable adults has been published by the Data Protection Commission (DPC).

Jim O'Callaghan has been accused of peddling a "fantasy" after promising legislation allowing for the interception of messages sent on encrypted platforms like WhatsApp or Signal. The justice, home affairs and migration minister last week said in a speech that a new Communications (Interception

The Department of Social Protection has been criticised for launching High Court proceedings in a response to a €550,000 fine for breaching the GDPR. The Data Protection Commission (DPC) last month announced its decision that the Department had failed to identify a valid legal basis for collect

Ireland's Data Protection Commission (DPC) has launched a further inquiry into TikTok over its transfers of European users' personal data to servers in China. The new inquiry follows a previous decision by the DPC in which the regulator imposed a €530 million fine on TikTok in connection with a

TikTok has lost a battle over a preliminary issue in its appeal against a £12.7 million fine imposed by the UK's Information Commissioner's Office (ICO). The First-tier Tribunal has confirmed that the ICO had the power to issue a monetary penalty notice (MPN) to TikTok in April 2023.

The Department of Social Protection has launched High Court proceedings seeking to overturn a finding that it breached the GDPR in relation to the requirement for public services card (PSC) applicants to provide their biometric data. The Data Protection Commission (DPC) last month imposed an adminis

The Data Protection Commission handed down administrative fines totalling €652 million last year, according to its latest annual report. The privacy watchdog issued 11 finalised inquiry decisions in 2024, including high-profile decisions on inquiries into LinkedIn and Meta, which alone made up

The UK's data protection watchdog has fined genetic testing company 23andMe £2.31 million for failing to implement appropriate security measures to protect the personal information of UK users, following a large-scale cyber attack in 2023. The penalty follows a joint investigation conducted by

Biometric data collected from 70 per cent of the Irish population over the past 15 years should be deleted immediately, the Irish Council for Civil Liberties (ICCL) has said. The NGO has criticised the decision in the Data Protection Commission's (DPC) inquiry into the Department of Social Protectio

The Department of Social Protection has been fined €550,000 for breaches of the GDPR relating to the requirement for public services card (PSC) applicants to provide their biometric data. The Data Protection Commission (DPC) today announced its final decision following the conclusion of an inqu

William Fry lawyers John O'Connor, Rachel Hayes and Conor Forde look at new EDPB guidelines on the use of blockchain and their impact on the Web3 industry. On 14 April 2025, the European Data Protection Board (EDPB) opened its public consultation on its guidelines for the processing of personal data

The High Court has paved the way for a class action lawsuit to be brought against Microsoft over advertising technology alleged to breach users' privacy rights. The Irish Council for Civil Liberties (ICCL) yesterday applied to the court for what it said would be Ireland's first-ever class action law

As the GDPR turns seven, William Fry lawyers Rachel Hayes and India Delaney consider new EU proposals to amend the landmark data protection law. On 25 May 2025, we marked the seventh anniversary of the General Data Protection Regulation (GDPR) coming into effect. Over the past seven years, the GDPR