X (Twitter) — Enforcement
moderate→
The Irish DPC fined Twitter €450,000 for failing to notify the regulator of a data breach within the 72-hour window required by GDPR and failing to adequately document the breach. A bug in Twitter's Android app had caused protected tweets from private accounts to become publicly visible. This was the first major GDPR enforcement decision against a big tech company to go through the EU's Article 65 dispute resolution process.
Full diff not available for this historical entry.
Detailed line-by-line diffs will be generated automatically for future policy changes detected by the scraper.