Ireland's Privacy Regulator Is Investigating Instagram

Uploaded on 2020-10-28 in TECHNOLOGY-Key Areas-Social Media, FREE TO VIEW, BUSINESS-Services-Law

Facebook could face a huge privacy fine after the chief European Union (EU)  data watchdog, the Irish Data Protection Commission (DPC), launched a review into how Instagram has exposed the contact details of millions of children. 

The DPC,which is the main data privacy regulator in the EU, has received complaints from individuals and has identified “potential concerns” in relation to the processing of children’s personal data on Instagram.  

The inquiry will also consider whether Facebook has the legal basis to process the data and whether it employs adequate protections and/or restrictions on Instagram.

The purpose of the inquiry is to consider whether Facebook meets its obligations as a data controller with regard to transparency requirements in its provision of Instagram to children.

Instagram’s profile and account settings will be the focus of  a second inquiry, examining whether the social media company is adhering to the regulator’s data protection requirements.

Ireland hosts the European headquarters of a number of US technology firms, making the DPC the EU’s lead regulator under the bloc’s General Data Protection Regulation (GDPR)  regime introduced in 2018. The new rules give regulators the power to impose fines for violations of up to 4 per cent of a company’s global revenue or €20 million, whichever is higher.

All Instagram users can change their personal Instagram accounts to ones designed for businesses, which unlike personal profiles, gives them statistics such as how popular their photos and videos were. But, a business account also means that the user’s personal contact details are publicly displayed on their profile, allowing anybody to contact the children outside of the app.

Until recently, Instagram required all business accounts to show a phone number or email address, so users could not opt out of having their public information displayed. It still allows anybody to set up a business account, with no verification to check if they are actually running a business.

Data Protection Commission:     Irish Times:         Reuters:       Telegraph:       Benzinga

You Might Also Read:

Fact-Checking Comes To Instagram:

Tech Giants Have Facilitated An Online Slavery Market:

 

« Malware Versus Ransomware: What’s the Difference?
Cyber Professionals Fear Being Replaced By AI »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

FT Cyber Resilience Summit: Europe

FT Cyber Resilience Summit: Europe

27 November 2024 | In-Person & Digital | 22 Bishopsgate, London. Business leaders, Innovators & Experts address evolving cybersecurity risks.

Cyber Security Supplier Directory

Cyber Security Supplier Directory

Our Supplier Directory lists 6,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

USNA Center for Cyber Security Studies

USNA Center for Cyber Security Studies

The mission of the Center for Cyber Security Studies is to enhance the education of midshipmen in all areas of cyber warfare.

Research Institute in Trustworthy Industrial Control Systems (RITICS)

Research Institute in Trustworthy Industrial Control Systems (RITICS)

RITICS is one of three Research Institutes formed as part of the UK National Cyber Security Strategy.

Prim'X Technologies

Prim'X Technologies

Prim'X Technologies provides information protection solutions to prevent unauthorised access to sensitive data.

Picus Security

Picus Security

Huge gaps often exists between the "perceived"​ and "actual"​ IT security level of an organization. Picus Security continuously assesses security controls and reveals deficient ones before hackers do.

State e-Government Agency (SEGA) - Bulgaria

State e-Government Agency (SEGA) - Bulgaria

The State e-Government Agency (SEGA) is responsible for matters relating to electronic governance in Bulgaria.

Prescient

Prescient

Prescient’s Cyber solutions supplement your firm’s existing data security infrastructure with specialized investigations that identify unconventional cyber risks.

Cybertonica

Cybertonica

Cybertonica is a FinTech company which detects and prevents fraudulent transactions and reduces risk for financial services organisations.

CyCognito

CyCognito

CyCognito empowers companies to take full control over their attack surface by uncovering and eliminating the critical security risks they didn't even know existed.

FutureCon Events

FutureCon Events

FutureCon produces cutting edge events aimed for Senior Level Professionals working in the security community, bringing together the best minds in the industry for a unique cybersecurity event.

Allthenticate

Allthenticate

Allthenticate Single Device Authentication (SDA), enables seamless authentication in both the physical and digital words while unifying management in one easy-to-use interface.

Diateam

Diateam

Diateam is an R&D company specializing in computer security. Diateam develops highly innovative cyber range platforms and Industry-leading systems for cybersecurity training and testing labs.

WebSec B.V.

WebSec B.V.

WebSec is a Dutch Cybersecurity firm mainly focused on offensive security services such as pentesting, red teaming and security awareness and phishing campaigns.

Seedcamp

Seedcamp

Seedcamp identify and invest early in world-class founders attacking large and global markets through disruptive technology in areas including AI, cybersecurity, and Fintech.

ISO WISH

ISO WISH

Take your Business to the Next Level with ISO Certification in UAE.

Velotix

Velotix

Velotix empowers organizations to maximize the value of their data while ensuring security and compliance in a rapidly evolving regulatory landscape.

Cyro Cyber

Cyro Cyber

Cyro Cyber is a collective of some of the UK’s most experienced and savvy cybersecurity, information assurance, data protection, IT governance and compliance experts.