Ireland's Data Protection Commission has fined Meta over its handling of user data, following hundreds of millions of dollars in similar fines and possibly putting parts of its ad business at risk. The DPC announced today that Meta will have to pay over 200 million dollars for violating European Union privacy rules with Facebook.
There were two complaints about how Meta complied with the General Data Protection Regulation. Users are required to accept a new terms of service that includes the processing of user data. The complaints said that this amounted to forcing them to consent to things that were against the new rules.
Meta couldn't rely on the contract as an absolute defense of its business practices after the DPC found that the updates had been insufficiently clear. Regulators increased their fines for the company as a result of the EDPB's guidance. Meta has to bring its operations into compliance with the law in three months.
According to The Wall Street Journal, Meta could face restrictions on its ability to conduct targeted advertising. Meta denied in a post that they meant to stop the practice. The decisions do not prevent personalized advertising. It said that the decisions relate to which legal basis Meta uses. We are looking at a variety of options that will allow us to keep offering a fully personalized service.
Meta has previously been fined for violating European regulations. In November, the DPC determined that Meta should pay $276 million over a data leak, in September it fined the company over how it handled teens' data, and in March it fined the company over record-keeping problems.