Ireland's data regulator has fined Instagram for €405 million for violating the EU's General Data Protection Regulation and failing to protect children's data.
After a two-year investigation they found that Instagram defaulted all accounts, including those under the age of 18 and business accounts, to public settings.
Instagram said the fine is related to old settings that were updated over a year ago. Children's accounts are now set to private upon sign up.
Teens are also now informed on business accounts that their contact information will be public unless they opt to change it.
The fine is one of the highest imposed under GDPR and the third that Irish regulator has given to Meta, which also owns Facebook and WhatsApp.
