Irish Data Protection Commission Spokesperson Notifies Organization will ‘Use Full Powers’ in 2019

January 4, 2019


A spokesperson for the Irish Data Protection Commission (DPC) lately disclosed in an interview that his organization will be applying the General Data Protection Regulation (GDPR) law much more strictly in 2019.

Head of Communications with the DPC, Graham Doyle, was addressing to TNW when he said that GDPR obviously had a huge effect in 2018 as it made people ponder more concerning how their private data is handled. He referred to the growing amount of GDPR occurrences being informed as a sign of this. In 2018 there were 3,500 breach notices and 2,500 grievances, almost two times the 2017 figures. Doyle is pleased with this as the DPC expends substantial resources on awareness because it considers educating companies and the people to be the main part of its role.

He said: “We take a twin-pronged method to upholding GDPR: implementation and engaged control. Engaged control is where we engage with businesses, discuss private data-related law, and with businesses concerning their new products. Essentially, when we engage with companies, we try to help them in getting it right from the start.”

He went on to say that 2019 will see the agency sanction fines as present inquiries come to an end and the body will be applying the laws of the legislation with great power in an attempt to avoid future breaches. He said: “The latest toolkit that the GDPR has provided DPAs brings considerably increased powers. We will use the complete authorities afforded to us, and the complete range of the GDPR’s toolkit, where it’s proper to do so.”

Under GDPR law the maximum penalty for a breach is €20m or 4% of yearly international income, whichever amount is higher.

He also referred to an increase in the scope of the GDPR inquiries in 2019 when he said: “We’ll definitely be finishing some of the bigger inquiries in 2019.”

However, Doyle also pointed to the fact that awareness of the rule has greatly enhanced over the time leading up to the May 25, 2018 date that it came into law. He said: “We carried out a survey in early 2017 where we evaluated the awareness levels of the GDPR among companies in Ireland and found it to be between 30% and 40%. Nevertheless, when we repeated the survey in May 2018, we were at about 90% awareness levels.”

The DPC is the local data safety organization in Ireland and is charged with making sure that firms within its dominion are obeying the law. Moreover, it is expected to examine any grievances that are submitted. As there are a big amount of international firms based in Ireland the range for investigations is huge. Since the May 25, 2018 launch date there have been GDPR grievances registered against Google, Facebook and Twitter – all businesses that have their EU headquarters based in Dublin.