Twitter has been fined €450,000 after breaching GDPR rules.
The Data Protection Commission issued the penalty after the social media giant failed to notify it within 72 hours.
The DPC’s investigation commenced in January of last year following receipt of a breach notification from Twitter.
A bug had allowed some protected tweets to go public.
Twitter says it takes full responsibility for the mistake and is committed to protecting privacy.
The Irish Council for Civil Liberties says it's disappointing that Twitter was fined such a meagre amount and that Spanish, Dutch, French, German, Austrian, Italian, and Hungarian GDPR enforcers have also taken issue with the DPC's actions.
Graham Doyle from the Data Protection Commission says there was a thorough investigation "It's a discreet issue around the notification on time and the documentation that's provided, so it was found in this case that the €450,000 was an effective, proportionate and dissuasive approach"
The Commission is examining more than 20 other cases involving US tech firms - fines can be up to 4 per cent of a company's global revenue.