The Ireland’s data protection authority – Data Protection Commission (DPC) – has released its Annual Report for 2022, showcasing their progress on a range of initiatives such as ongoing inquiries against prominent social media platforms, upholding cross-border decisions, and enhancing interaction with the European Data Protection Board (EDPB). This report indicates that authorities in the EU levied two-thirds of all GDPR fines last year through the DPC, indicating their strong commitment towards enforcement.
In addition, 5,695 valid notifications of personal data breaches were reported to the DPC over the course of the year, representing a 13% decline compared to 2021. Of these, 62% involved unauthorized disclosure of personal data, 105 corresponded to ePrivacy Regulations – an increase of 176% from the previous year – and 38 were tied to the Law Enforcement Directive.
By sector, private entities accounted for 52% of all incidents notified, public entities represented 44%, with the remaining 4% attributed to voluntary and charity organisations.