WhatsApp, which is owned by Facebook, has been fined €225 million ($267 million) for violating European Union data privacy rules. In an 89-page summary (PDF), Ireland’s Data Protection Commission (DPC) published the judgment, stating that WhatsApp failed to adequately notify EU residents about how it handles their personal data, particularly how it shares that data with its parent firm.
In an email to The Verge, a WhatsApp spokeswoman stated that the firm will appeal the verdict.
“WhatsApp is dedicated to offering a safe and secure service. We’ve worked hard to make sure the information we provide is clear and thorough, and we’ll keep doing so,” the representative added. “We are disappointed with today’s verdict on the transparency we gave to the public in 2018, and the penalties are completely disproportionate.”
The DPC’s judgment follows an inquiry that began in 2018 and is the second-largest fine imposed under GDPR legislation. Amazon was fined an all-time high of $887 million in July for violating EU privacy laws.