New York (The Verge) — Twitter hit with €450,000 GDPR fine nearly two years after disclosing data breach trib.al/hQrVjWL.
Ireland’s Data Protection Commission has fined Twitter €450,000 over a data breach it disclosed back in January 2019. The incident exposed some supposedly protected tweets from the service’s Android users for over four years.
Twitter was found to have violated the EU’s General Data Protection Regulation (GDPR) because it failed to notify the regulator within 72 hours of discovering the breach, The Wall Street Journal reports.
The fine is notable because it’s the first time a US tech giant has been hit with a GDPR fine in a cross-border case, meaning one in which the Irish regulator consulted its EU counterparts as part of the decision. The investigation was headed by Ireland’s DPC because Ireland is where Twitter’s international headquarters are based. — Jon Porter/@verge