Departement of Social Security – €550,000 Fine (Ireland, 2025)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
The Irish DPA imposed a fine of EUR 550,000 on the Departement of Social Security. The controller uses the so called SAFE 2 registration process for anyone applying for a Public Services Card. The SAFE 2 registration, which is mandatory, processes biometric data without a sufficient legal basis. The controller also failed to adequately inform data subjects in regards to the processing and to conduct a data protection impact assessment.
GDPR Articles Cited
View original scraped data
Original data from scraper before AI verification against source document.
The Irish DPA imposed a fine of EUR 550,000 on the Departement of Social Security. The controller uses the so called SAFE 2 registration process for anyone applying for a Public Services Card. The SAFE 2 registration, which is mandatory, processes biometric data without a sufficient legal basis. The controller also failed to adequately inform data subjects in regards to the processing and to conduct a data protection impact assessment.
Related Enforcement Actions (0)
No other enforcement actions found for Departement of Social Security in IE
This is the only recorded action for this entity in this jurisdiction.
Details
Fine Date
12 June 2025
Authority
Data Protection Commission
Fine Amount
€550,000
Enforcement Tracker ID
ETid-2657
About this data
Cite as: Cookie Fines. Departement of Social Security - Ireland (2025). Retrieved from cookiefines.eu
Last updated: