Meta fined US$277mil for leak of half a billion users

The social network has previously said the data is old and that the problem had been found and fixed in 2019. — Photo by JOSH EDELSON/AFP

Meta Platforms Inc. was slapped with a €265 million (RM1.24bil) fine for failing to prevent the leak of the personal data of more than half a billion users of its Facebook service.

The Irish Data Protection Commission, the main privacy watchdog for Meta in the European Union, levied the fine following a probe that found the social-media company had failed to apply strict safeguards required under the bloc’s sweeping General Data Protection Regulation.

On top of the fine – the third-biggest under GDPR – the watchdog ordered Meta’s Irish unit to make sure its processing complies with the law, according to an emailed statement on Monday.

The Irish authority is the lead watchdog for some of Silicon Valley’s biggest tech firms that have set up an EU base in the country, including Meta. It opened its probe following revelations that "a collated dataset of Facebook personal data” had been published on the internet. Personal information on 533 million Facebook users worldwide reemerged on a hacker website last year, including their phone numbers and email addresses.

The investigation looked into "Facebook Search, Facebook Messenger Contact Importer and Instagram Contact Importer tools in relation to processing carried out by Meta” between May 2018 and September 2019, the data protection commission said.

The social network has previously said the data is old and that the problem had been found and fixed in 2019.

Meta said in a statement on Monday that "protecting the privacy and security of people’s data is fundamental to how our business works” and that it had cooperated fully with regulators.

"We made changes to our systems during the time in question, including removing the ability to scrape our features in this way using phone numbers,” the company said. "Unauthorized data scraping is unacceptable and against our rules and we will continue working with our peers on this industry challenge. We are reviewing this decision carefully.”

Data watchdogs in Europe saw their powers increased overnight in May 2018, when the GDPR took effect and gave them the power to levy fines of as much as 4% of a company’s annual sales.

The biggest penalties under GDPR so far are a record €746 million (RM3.49bil) fine for Inc. by its lead privacy watchdog in Luxembourg, followed by a €405 million (RM1.89bil) fine for Meta’s Instagram, and a €225 million (RM1.05bil) fine for Meta’s WhatsApp unit, both by the Irish authority. – Bloomberg

Article type: free
User access status:
Subscribe now to our Premium Plan for an ad-free and unlimited reading experience!

Next In Tech News

Tesla considering plant near Mexico City's new airport, Mexican official says
EU studying whether Big Tech should pay network costs -EU document
Apple workplace rules violate U.S. labor law, agency finds
Analysis-GM goes slow on EVs as rivals fight a price war
Elon Musk seeks to end lawsuit over 'inadvertent' late disclosure of Twitter stake
Exclusive-EU industry chief Breton to hold video call with Twitter's Musk - EU official
Russian tech giant Yandex says code leaked in cybersecurity incident
Exclusive-Warner Bros Discovery licenses movies and TV shows to Roku, Tubi
U.S. Justice Department asks Tesla for documents on driver assist systems
Jail for man in S’pore who used Microsoft Word to forge S$25,000 bank transaction to sugar baby

Others Also Read