The Data Protection Commission (“DPC”) recently published its 2020 annual report (the “Report”) covering its regulatory activities between 1 January 2020 and 31 December 2020. The Report highlights that the DPC concluded a number of large-scale inquiries in 2020 resulting in decisions on infringements and in many cases the imposition of corrective measures. Those subject to corrective measures included Kerry County Council, TUSLA, Waterford City and County Council, Ryanair, UCD, HSE, Groupon and Twitter. In May 2020, the DPC used its fining powers for the first time levying two fines against TUSLA and it issued its first fine in a cross-border case against Twitter for €450,000 in December 2020. At the end of 2020, the DPC had 83 statutory inquiries open (27 of which were cross-border).