Seems like 2020 is a year full of lawsuits and antitrust fine. According to a latest report, Twitter is fined in Ireland a hefty amount of 4, 50,000 Euros for a bug that made some private tweets public. Ireland’s Data Protection Commission said on Tuesday that it is fining Twitter Inc. for failing to document or properly notify the regulator within 72 hours of learning of a data breach disclosed in January 2019 that exposed some users’ private tweets.
Twitter’s chief privacy officer, Damien Kieran said, “We take responsibility for this mistake and remain fully committed to protecting the privacy and data of our customers. The delay in notification was an “unanticipated consequence of staffing between Christmas Day 2018 and New Years’ Day.”
The Data Protection Commission commenced an investigation on Twitter in January 2019 after the company publicly disclosed it had unintentionally made some users’ private tweets public. The Commission found that Twitter breached Article 33(1) and 33(5) of GDPR in terms of a failure to notify the breach on time to the DPC, and a failure to adequately document it.
What is GDPR?
GDPR is General Data Protection Regulation. It came into effect in May 2018. It gives data regulators powers to fine companies up to 4 % of their global turnover of the previous year or Euros 20 million, whichever is greater, for violating the law.
The commission is the lead European regulator for many big tech giants including Google and Facebook.
Damien Kiernan said, “We respect the commission’s decision, which relates to a failure in our incident response process… we have made changes so that all incidents following this have been reported to the commission in a timely fashion. We take responsibility for this mistake and remain fully committed to protecting the privacy and data of our customers, including through our work to quickly and transparently inform the public of issues that occur. We appreciate the clarity this decision brings for companies and consumers around the GDPR’s breach notification requirements. Our approach to these incidents will remain one of transparency and openness.”