The Data Protection Commission
Safeguarding data protection rights by driving compliance through guidance, supervision and enforcement
Safeguarding data protection rights by driving compliance through guidance, supervision and enforcement.
The DPC will be a fully fit-for-purpose independent, internationally respected and trusted supervisor and enforcer of EU data protection law.
We will at all times demonstrate professionalism, competence and expertise in performing our enhanced role under the GDPR as a lead supervisory authority for many of the world’s largest technology, internet and social media companies as well as being the supervisory authority for Irish domestic companies and organisations, in both the public and private sector.
Where necessary and proportionate, and in accordance with Irish and EU law, we may apply sanctions, such as administrative fines, against any company or organisation which has infringed the law. We will exercise our prosecution powers under the Data Protection Act 2018 and under S.I. No. 336 of 2011 in a fair and transparent manner.
As required by the new data protection legal framework, we will handle complaints from individuals who believe their data protection rights have been infringed and take appropriate action in handling complaints.
The skills profile of our staff, our structure and size, our procedures and our budget will reflect our expanded domestic and international functions and responsibilities.
The DPC will continue to progressively build stronger international collaborative relationships with data protection authorities and consumer protection regulators across the globe, participating as members of international networks such as the International Conference of Data Protection and Privacy Commissioners, the Conference of European Data Protection Authorities and the Global Privacy Enforcement Network. We will work in cooperation with all EU data protection supervisory authorities, as a member of the European Data Protection Board, as required under the new legal framework, and fully participate in the continued implementation of a harmonised data protection regime throughout the EU.
We are committed to demonstrating the following values in performing our functions and fulfilling our responsibilities, and in all of our interactions with individuals, organisations, statutory and regulatory bodies, and other stakeholders:
DPC's Regulatory Strategy
We are currently developing our new Regulatory Strategy for 2020-2025. Details of the public consultation we held on Target Outcomes, which is now closed, are available here.