The Irish Data Protection Commission (DPC) has come under criticism for consecutive delays in overhauling its IT systems which would allow for more effective GDPR enforcement.
Documents obtained by the Irish Council for Civil Liberties (ICCL) through freedom of information requests show that five years after first announcing plans to upgrade its IT system and after having spent over half a million euros on the project, the DPC continues to use out-of-date “Lotus Notes” technology.
The Irish body is the lead EU authority in overseeing data protection violations by some of the world’s largest firms, including Google and Facebook.
“What we have discovered indicates that it cannot run critically important internal technology projects. How can it be expected to monitor what the world’s biggest tech firms do with our data?” said Johnny Ryan, an ICCL Senior Fellow.
“This raises serious questions, not only for the DPC but for the Irish government. We have alerted the Irish government of the strategic economic risk from failing to enforce the GDPR,” Ryan added. (Samuel Stolton | EURACTIV.com)