Ireland's Privacy Regulator Is Investigating Instagram

Uploaded on 2020-10-28 in TECHNOLOGY-Key Areas-Social Media, FREE TO VIEW, BUSINESS-Services-Law

Facebook could face a huge privacy fine after the chief European Union (EU)  data watchdog, the Irish Data Protection Commission (DPC), launched a review into how Instagram has exposed the contact details of millions of children. 

The DPC,which is the main data privacy regulator in the EU, has received complaints from individuals and has identified “potential concerns” in relation to the processing of children’s personal data on Instagram.  

The inquiry will also consider whether Facebook has the legal basis to process the data and whether it employs adequate protections and/or restrictions on Instagram.

The purpose of the inquiry is to consider whether Facebook meets its obligations as a data controller with regard to transparency requirements in its provision of Instagram to children.

Instagram’s profile and account settings will be the focus of  a second inquiry, examining whether the social media company is adhering to the regulator’s data protection requirements.

Ireland hosts the European headquarters of a number of US technology firms, making the DPC the EU’s lead regulator under the bloc’s General Data Protection Regulation (GDPR)  regime introduced in 2018. The new rules give regulators the power to impose fines for violations of up to 4 per cent of a company’s global revenue or €20 million, whichever is higher.

All Instagram users can change their personal Instagram accounts to ones designed for businesses, which unlike personal profiles, gives them statistics such as how popular their photos and videos were. But, a business account also means that the user’s personal contact details are publicly displayed on their profile, allowing anybody to contact the children outside of the app.

Until recently, Instagram required all business accounts to show a phone number or email address, so users could not opt out of having their public information displayed. It still allows anybody to set up a business account, with no verification to check if they are actually running a business.

Data Protection Commission:     Irish Times:         Reuters:       Telegraph:       Benzinga

You Might Also Read:

Fact-Checking Comes To Instagram:

Tech Giants Have Facilitated An Online Slavery Market:

 

« Malware Versus Ransomware: What’s the Difference?
Cyber Professionals Fear Being Replaced By AI »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

Watch this webinar to hear security experts from Amazon Web Services (AWS) and SANS break down the myths and realities of what an NGFW is, how to use one, and what it can do for your security posture.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

DTEX Systems

DTEX Systems

DTEX Systems is the global leader for insider risk management. We empower organizations to prevent data loss by proactively stopping insider risks from becoming insider threats.

Cybereason

Cybereason

Cybereason provides attack protection with cutting edge EDR and XDR, and industry recognized consulting services to support organizations throughout any stage of the incident lifecycle.

First Response

First Response

First Response is a Cyber Incident Response and Digital Forensic Investigation company.

CybeReady

CybeReady

CybeReady’s Autonomous Platform offers continuous adaptive training to all employees and guarantees significant reduction in organizational risk of phishing attacks.

Eperi

Eperi

Eperi is a leading provider of Cloud Data Protection (CDP) solutions with 15 years of experience in data encryption for databases, (SaaS) applications and files.

IAR Systems

IAR Systems

IAR Systems are a frontrunner in a changing industry, and a future-proof software supplier enabling the IoT.

Crypsis

Crypsis

Crypsis was built based on a shared vision of creating a more secure digital world by providing the highest quality incident response, risk management, and digital forensic services.

QNu Labs

QNu Labs

QNu Labs’s quantum-safe cryptography products and solutions assure unconditional security of critical data on the internet and cloud across all industry verticals, globally.

HacWare

HacWare

HacWare is a data driven cybersecurity awareness product that leverages machine learning and behavior analytics help IT professionals combat phishing.

Wolverhampton Cyber Research Institute (WCRI)

Wolverhampton Cyber Research Institute (WCRI)

Wolverhampton Cyber Research Institute builds on the strength of its members in the area of network and communication security, artificial intelligence, big data and cyber physical systems.

Precursor Security

Precursor Security

Precursor Security are information security specialist, delivering all aspects of Security testing, Cyber Risk Management, and Continuous Security Testing.

Dataships

Dataships

We help companies automate their privacy compliance while building healthy, transparent data relationships with their customers.

Digital Silence

Digital Silence

Digital Silence is a world-class provider of information security research and consulting services.

Metabase Q

Metabase Q

Metabase Q protects you from financial and reputational losses with more efficient and intelligent cybersecurity, using the best worldwide in technologies, processes and specialists.

Secrutiny

Secrutiny

Scrutiny's core services include Cyber Maturity, Cyber Risk Analyser, Cyber Controls, Incident Response, SOC, Cyber Recovery and Assurance Testing.

Anchor Technologies Inc (ATI)

Anchor Technologies Inc (ATI)

Anchor provides a full spectrum of cybersecurity services assisting our clients with all aspects of cybersecurity risk planning, identification, management, and monitoring.