Civil society groups file complaints against outdated IT systems of Irish DPA

Documents obtained by the Irish Council for Civil Liberties (ICCL) under the Freedom of Information Act reveal that a major internal information technology (IT) project that would enable the Irish Data Protection Commission (DPC) to operate effectively as a General Data Protection Regulation (GDPR) enforcer has been delayed for years. After announcing that it would move to the new ICT system 5 years ago, and after having spent at least €615,121 on the project, the DPC continues to use antiquated ‘Lotus Notes’ technology. A former DPC employee told ICCL that using Lotus Notes to organise and handle complicated GDPR complaints is ‘like trying to run your payroll system with an abacus’. The Irish Times also reports that the DPC faces a draft resolution, introduced last week in the European Parliament, calling for formal infringement proceedings over alleged enforcement failings.