At its core, the ruling in September said that Meta (then Facebook) failed to adequately inform individuals of which jurisdictions WhatsApp processes users’ data in and how it identifies people in their contacts books.The new policy takes effect in the UK as well as other European jurisdictions that have adopted the European Union’s General Data Protection Regulations (GDPR).
The decision was supported by the European Data Protection Board
What did WhatsApp do wrong?
The fine was (and remains) the highest ever issued by the Irish DPC, which is the EU’s lead privacy regulator for Meta as the company’s European operations are based in Dublin.
It was issued after the European Data Protection Board (EDPB) in Brussels was called in to settle a dispute about WhatsApp between several EU privacy watchdogs to ensure the law was being interpreted the same way across the whole of the bloc.