Meta Fined €91 Million By EU For Password Security Breach

Meta, the parent company of Facebook, has been fined €91 million ($101.5 million) by the European Union’s Irish Data Protection Commission (DPC), for storing user passwords in plaintext.

The DPC launched an investigation five years ago, after Meta reported the issue, marking a significant breach of user privacy rules under the General Data Protection Regulation (GDPR).

Join our WhatsApp Channel

Meta’s Response to the Security Incident

Meta acknowledged the breach at the time, revealing that some users’ passwords were stored without encryption.

A spokesperson for the company said, “We identified this issue during a security review in 2019 and immediately took action to resolve it.”

The spokesperson added that there was no evidence to suggest that the passwords were misused or accessed by unauthorised individuals.

DPC’s View on Meta’s Security Lapse

The Irish DPC, which oversees GDPR compliance for many U.S. tech giants with EU headquarters in Ireland, expressed concern over Meta’s practices.

Deputy Commissioner Graham Doyle emphasized, “It is widely accepted that user passwords should not be stored in plaintext, considering the risks of abuse that arise from persons accessing such data.”

History of Fines

This is not the first time they have been fined by the DPC. Since GDPR came into effect in 2018, Meta has faced a total of €2.5 billion in penalties for various privacy violations, including a record €1.2 billion fine in 2023.

Meta is currently appealing that decision. The company has consistently engaged with the DPC during investigations and insists on improving its data protection measures.

While they have taken steps to address the security lapse, the fine underscores the EU’s commitment to enforcing strict data protection rules.

The incident highlights the ongoing challenges major tech companies face in complying with GDPR and maintaining the security of user data.

Emmanuel Ochayi

+ posts

Emmanuel Ochayi is a journalist. He is a graduate of the University of Lagos, School of first choice and the nations pride. Emmanuel is keen on exploring writing angles in different areas, including Business, climate change, politics, Education, and others.

Latest from News

Ghana Energy Company Seeks Massive 225% Tariff Hike Amid Financial Crisis

Ghana’s main electricity distributor, the Electricity Company of Ghana (ECG), has proposed a massive 225% increase in its distribution charges in a bid to stave off financial collapse and improve its troubled power network. The company has submitted its proposal to the

Nigeria, South Africa Hardest Hit As Disasters Wipe Out $12.7 Billion in African Infrastructure Annually

Africa loses an estimated $12.7 billion annually to infrastructure damage caused by natural disasters, with South Africa, Nigeria, and Algeria recording the highest losses. According to a report released on Monday by the Coalition for Disaster Resilient Infrastructure (CDRI), a global partnership

Constituents Left in Limbo as Senate Blocks Akpoti’s Return

The National Assembly has rejected Senator Natasha Akpoti-Uduaghan’s bid to return to the Senate, insisting her six-month suspension remains in force until the Court of Appeal rules on the matter. Join our WhatsApp Channel In a letter dated September 4, 2025, and

Congo Declares Ebola Outbreak After 15 Deaths in Kasai Province

The Democratic Republic of Congo (DRC) has declared a new outbreak of Ebola virus disease after 15 people died in southern Kasai Province, health officials confirmed on Friday. This marks the country’s 16th Ebola outbreak since the virus was first discovered there

ATPI’s 2025 Report Highlights Significant Progress in Carbon Reduction

The 2025 report highlights key findings and improvements in ATPI's global activities, performance, and outcomes against Environmental, Social, and Governance reporting criteria

Cookie	Duration	Description
cookielawinfo-checbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.