Facebook is facing a GDPR probe over massive data leak

Facebook logo on phone
Facebook logo on phone (Image credit: Joe Maring / Android Central)

What you need to know

  • Facebook is facing an investigation in Ireland over a recently publicized data leak.
  • The Irish DPC believes that Facebook has broken one or more provisions of the General Data Protection Regulations.
  • Facebook has confirmed it has spoken to investigators regarding the issues raised.

Facebook recently suffered a large data leak where a cache of data, initially breached five years ago, was now made publicly available. This cache included "phone numbers, Facebook IDs, full names, locations, birthdates, bios, and, in some cases, email addresses." Facebook came under fire for declining to notify affected customers about the breach, and now Ireland's Data Protection Commission, or DPC, is stepping in to investigate Faceook over potential GDPR breaches.

The DPC shared the following statement this afternoon, saying:

The Data Protection Commission (DPC) today launched an own-volition inquiry pursuant to section 110 of the Data Protection Act 2018 in relation to multiple international media reports, which highlighted that a collated dataset of Facebook user personal data had been made available on the internet. This dataset was reported to contain personal data relating to approximately 533 million Facebook users worldwide. The DPC engaged with Facebook Ireland in relation to this reported issue, raising queries in relation to GDPR compliance to which Facebook Ireland furnished a number of responses.

The DPC also says that it believes Facebook has broken one or more provisions of the GDPR and wants to look into "whether Facebook Ireland has complied with its obligations, as data controller, in connection with the processing of personal data of its users."

Facebook has confirmed to TechCrunch that it remains in contact with investigators.

At the same time, EU Commissioner for Justice, Didier Reynders, weighed in on Twitter, saying:

Today I spoke with Helen Dixon [from the Data Protection Commission] about the [Facebook Leak]. The Commission continues to follow this case closely and is committed to supporting national authorities. We also call on [Facebook] to cooperate actively and swiftly to shed light on the identified issues.

Michael Allison
3 Comments
  • And as almost always nothing will happen to them, either that they will get a fine.(An amount that will be like peanuts to a company worth billions). They need to get serious with these types of breaches, charge them minimum 10% of the company value. Should be doing this to all of them. Then things will change (hopefully).
  • Oh no! Shocking?! Zuckerberg and the higher ups at Facebook must be shaking in their boots! These guys regularly refuse to even appear before inquiry committees, including those from the US Congress (nevermind legislatures from other countries). Even when they do, they are all lawyered up so that basically any and all questions wash over them with no consequences... making everything look like a circus...led by a bunch of powerless buffoons. I'm afraid that baring some unforseen miracle, we have to come to grips with and accept the fact that these tech overlords have become nearly untouchable... especially since the people supposedly assigned to keep a watch on them and hold them accountable, are just as corrupt and compromised.
  • Nothing will happen to them because these politicians have been brought and controlled long ago. You don't think these corporation's give these politicians money for nothing? You don't get something for nothing and these guys need millions to get elected or reelected.