Tusla Child and Family Agency – €40,000 Fine (Ireland, 2020)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
Ireland's Data Protection Commission fined Tusla Child and Family Agency €40,000 for sending a letter with abuse allegations to a third party, which was then shared on social media. This case highlights the importance of handling sensitive information carefully to prevent unauthorized disclosure.
What happened
Tusla sent a letter containing abuse allegations to a third party, who then posted it on social networks.
Who was affected
Individuals mentioned in the letter whose sensitive information was exposed online.
What the authority found
The Data Protection Commission fined Tusla for failing to protect personal data, as required under GDPR Article 33.
Why this matters
This case underscores the need for organizations to secure sensitive data and prevent unauthorized access, especially when sharing information with third parties.
GDPR Articles Cited
The organization sent a letter with abuse allegations to a third party who then uploaded it to social networks.
Related Enforcement Actions (2)
Other enforcement actions involving Tusla Child and Family Agency in IE
Fine
€40K
Details
Fine Date
30 June 2020
Authority
Data Protection Commission
Fine Amount
€40,000
Enforcement Tracker ID
ETid-320
About this data
Cite as: Cookie Fines. Tusla Child and Family Agency - Ireland (2020). Retrieved from cookiefines.eu
Last updated: