Privacy activism group noyb, which has made headlines for its high-profile cases against Facebook in the EU, has brought a corruption complaint against the Irish DPC over its handling of a case that dates back years.
Facebook has now exhausted its options for legal challenges as the Irish DPC has ended its stay on the EU-US data transfer ban. The company may be ordered to stop transfers as early as this summer.
noyb has leaked documents that show Facebook approached the EDPB with their concept of “user contracts” that sidestep GDPR rules for user consent after numerous receptive meetings with the Irish DPC.
Proposed fruits of the Irish DPC's three-year investigation into Facebook's consent and transparency violations are GDPR fines that would amount to a maximum of about $36 million to $42 million, or what the company makes roughly every two hours.