Last week the DPC published our Annual Report for 2024 and the results of the DPC Public Attitudes Survey for 2025 during a press conference at our new office!.🔗 🎥 We’ve produced a short video of the day – take a look 👇

Under the GDPR, certain organisations are required to appoint a designated Data Protection Officer and to provide these details to the DPC. For more information on DPOs, visit our website:

We were delighted to host a range of National Governing Bodies to discuss data protection within sport. Lots of valuable ideas were shared, both in-person and online, on how we can support Governing Bodies, clubs and organisations with their data protection responsibilities.

📚 Case Study.This complaint concerned the disclosure of CCTV imagery by an employer to a car park manager, relating to an incident around payment of a car park fee by the employee. 👉

🤖 We've all seen that AI, and chatbots based on Generative AI, have become increasingly popular recently - this blog discusses the potential data protection risks in the development and use of such AI systems. Read 👉

We've come across many cases where email addresses gathered for e-receipts were then used to issue marketing material. We've produced guidance to assist retailers adhere to best practice in relation to e-receipts:

Case Study 🔍.This complaint concerned mortgage correspondence being sent to an old address - despite the complainant's bank being aware that they had moved to a separate address - where it was opened by the tenants in situ. 👉

🤗 The DPC was delighted to host representatives of the Ministry of Economic Affairs and the Ministry of the Interior and Kingdom Relations of the Netherlands yesterday, who are visiting Ireland for meetings with digital regulators this week.

📢 Latest News.The DPC has today announced that it has opened an inquiry into TikTok Technology Limited’s transfers of EEA users’ personal data to servers located in China. Read the full press release on our website 👇.

🗣️ To coincide with the publication of our 2024 Annual Report, the Data Protection Commission has also released the results of an independent Public Attitudes Survey conducted in May 2025. Take a look at the key findings and full report on our website 🔗

Case Study 🗃🩺.This complaint concerned the disclosure of medical information from a doctor who had treated the complainant and their son, to the GP of the complainant's son, in the course of responding to an FOI request. 👉

CCTV, Discovery and Access Requests.📄 This blog post, following a High Court ruling from a few years ago, discusses the distinctions between access requests and discovery in civil litigation relating to CCTV.

DPC Commissioners Des Hogan and Dale Sunderland attended a high level EDPB meeting in Helsinki this week. A number of new initiatives to make GDPR compliance easier were agreed upon. Further details can be found here:

🔑 Principles of Data Protection!.👉 Storage Limitation - Personal data should only be kept for as long as is necessary for the purpose for which the personal data is processed.

📚 Case Study.This complaint concerned an access request made to a County Council - the complainant was dissatisfied that his request for access to a copy of any information kept about him by the County Council was refused. 👉

Commissioner Des Hogan participated in a panel during the @the_iapp 'Digital Policy Leadership Retreat' yesterday in New Hampshire, US. The panel discussed the topic of 'Leveraging Tools and Talent'. #Navigate2025

👋 Join the DPC for an engaging information session for school leaders and board members on our recently published 'Data Protection Toolkit for Schools' on Thursday, 9 October at the Wexford Education Centre. Places are limited - register now! 👉

🌈 With Dublin Pride approaching this weekend, we were delighted to invite John Mee from the Outhouse LGBTQ+ Centre to speak to DPC staff today about the importance of creating safe spaces for LGBTQ+ people in the workplace. It was an informative talk with a great turnout!

🔎 Case Study.This complainant was involved in an incident in a carpark at their workplace. A complaint was made to the complainant’s employer and CCTV images were then viewed by their manager and colleagues in the context of disciplinary proceedings. 👉

👨‍👧‍👦 Fundamental 11 - Minimum User Ages aren't an Excuse.👉 Theoretical user age thresholds for accessing services don’t displace the obligations of organisations to comply with the standards set out in the Fundamentals where underage users are concerned.