European Data Protection Board (EDPB) resolved the data transfer dispute by Meta

The European Data Protection Board (EDPB) resolved the dispute on the legality of data transfers to the USA by Meta Platforms Ireland Limited (Meta IE) for its Facebook Service. This decision ensures the correct and consistent application of the General Data Protection Regulation (GDPR) by national Data Protection Authorities.

 Flag

The European Data Protection Board (EDPB) has decided to resolve a dispute regarding the legality of data transfers to the USA by Meta Platforms Ireland Limited (Meta IE) for its Facebook service. The decision was made based on a draft decision by the Irish Data Protection Authority (DPA) as the lead supervisory authority (LSA) regarding Meta IE. The EDPB’s binding decision settles the dispute on whether an administrative fine and/or an additional order to bring processing into compliance must be included in the Irish DPA’s final decision. This decision ensures the correct and consistent application of the General Data Protection Regulation (GDPR) by national Data Protection Authorities.

In addition, the EDPB has created a task force to investigate the matter further and assess the potential risks to data protection posed by using large language models such as ChatGPT. The task force will also examine the adequacy of the current legal framework governing the use of these models.

Overall, this decision by the EDPB highlights the importance of ensuring adequate safeguards are in place when transferring personal data and the need for ongoing scrutiny of emerging technologies that may pose new risks to data protection.