Last Friday, Facebook announced that it has uncovered a bug that may have affect up to 6.8 million of its members. This bug gave third-party apps access to more users’ photos than they originally thought.
The bug was found in software that used Facebook’s login to grant third-party apps access to a user’s photos on the platform. This bug was active for 12 days between 13 and 25 September.
The DPC (Data Protection Commission) confirmed this morning that it has received a number of breach notifications from Facebook since the GDPR (General Data Protection Regulation) came into effect on 25 May 2018. Following this most recent breach, the DPC has commenced a statutory inquiry examining Facebook’s compliance with the relevant provisions of the GDPR.
If Facebook – which was already facing an official probe from the Irish DPC for a privacy issue uncovered in September that reportedly affected 30 million people – are found to be in breach of the tough new GDPR rules, it could be fined up to 4% of its annual turnover.
Is your organisation #BreachReady?
With the Irish DPC receiving additional funding of €3.5 million for 2019, it will be carrying out a significant recruitment drive to make sure it is equipped to respond to and investigate the growing number of data breaches that companies within Ireland are experiencing.
To help Irish organisations get #BreachReady, IT Governance Europe is offering up to 20% off selected data protection and incident response solutions.