Information Density: Data Protection Commission – Signal Evidence & AI Readability

Protect Your Children's Data
Find out more

Previous

Next

[IMG: Contact the DPC]
Contact the DPC

[H2] For Organisations

Report a breach
Register your DPO

[H1] The Data Protection Commission
The Data Protection Commission (DPC) is the national independent authority responsible for upholding the fundamental right of individuals in the EU to have their personal data protected. The DPC is the Irish supervisory authority for the General Data Protection Regulation (GDPR), and also has functions and powers related to other important regulatory frameworks including the Irish ePrivacy Regulations (2011) and the EU Directive known as the Law Enforcement Directive.

[H1]
Frequently Asked Questions

[H2] Latest News

08/05/2026
[H3] Data Protection Commission Publishes Final Decision Following Inquiry into Permanent TSB
05/05/2026
[H3] DPC Opens Inquiry into Infinite Styles Services Co. Ltd. (SHEIN Ireland)
02/03/2026
[H3] The Data Protection Commission Publishes Final Decision Following Inquiry into University of Limerick

[H2] Your Data
Want to find out more about your data protection rights as an individual or contact us in relation to a potential infringement of your rights?
For Individuals

[H2] For Organisations
Want to find out more about your data protection obligations as a Data Controller or Processor or contact us in relation to a potential breach?
For Organisations

[H2] Resources
Are you interested in learning more about data protection and get insights into the new General Data Protection Regulation?
Guidance

[H2] Information for Data Protection Officers
Are you a Data Protection Officer interested in our guidance and other resources?
Resources

[H1] How to contact us
If you are a member of the public or an organisation wishing to speak with the Data Protection Commission in relation to a data protection matter, the most efficient way to get in touch is through the “CONTACT US ONLINE” button below.
Contact Us Online
It is important to note that the Data Protection Commission does not have a public counter and therefore we are not in a position to provide face-to-face meetings.
If, however, you are not in a position to engage with this office by the above mentioned means, please contact our Accessibility Officer via DPCAccessibilityOfficer@dataprotection.ie
Alternatively, you can contact us by post or by phone* with a general query not relating to a case.
[H5]  Helpdesk Hours
9.30am - 1pm (Monday - Friday)

[H5]  Telephone
(01) 765 01 00
1800 437 737
*Please note that when contacting the DPC by phone, you will only be provided with general information on data protection rights. The DPC is not in a position to accept complaints over the telephone; they will need to be submitted in writing, through the "CONTACT US ONLINE" button above. The DPC also cannot provide you with information on the status of a complaint you may have lodged or on the status of an inquiry which the DPC is undertaking. Any such queries must be submitted in writing only.
[H5] Postal Address
Data Protection Commission
6 Pembroke Row
Dublin 2
D02 X963
Ireland

[H5] Offices
Dublin Office
6 Pembroke Row
Dublin 2
D02 X963
Ireland
Portarlington Office
Canal House
Station Road
Portarlington
R32 AP23 Co. Laois

Organisations submitting a breach notification:
For organisations only, please be advised that you cannot submit a breach notification to the DPC over the phone. Please visit our homepage and click on ‘Report a Breach’ on the right-hand side of the page.

[H1] Children
[H1] “Pause Before You Post” Awareness Campaign

"Sharenting": The term ‘sharenting’ is a combination of the words ‘parenting’ and ‘sharing’ and is used to describe the practice of parents regularly sharing information, photos and videos about their children on social media and other online platforms.
[IMG: Sharenting. Pause Before You Post Infographic.]
Sharenting Risks and Tips infographic - downloadable PDF 173KB
[H1] Risks of Sharenting
The simple act of sharing information, photos, and videos of children online can lead to unintended oversharing of personal data, which, in the wrong hands, can have serious consequences.
Our “Pause Before You Post” Awareness Campaign is designed to show how those risks can play out in real life, as we learn from the family’s interactions with the three “strangers”. From their social media posts, Éabha’s parents have inadvertently “shared with the world” her name, age, date of birth, photos of her friends, the name and location of her football club , her training schedule and the fact that her Dad is not always on time to collect her. We also show how easy it is for images to end up in the wrong hands, as we see our third stranger downloading one of the photos of Éabha and saving it to his phone.
[H2] Sharenting can present a number of risks, including:
Digital footprint: By sharing about their children online, parents are creating a digital footprint for their child from a very early age, and often without their knowledge or consent. This can include photos, videos, and other personal information that may be difficult to erase later on.  In addition, if parents share images without talking to their child about it, they miss out on a chance to teach their child about consent and the value of their personal data.
Misuse of images for harmful purposes: When we share online, we risk losing control of what we post. This can lead to risk of images/videos of children being used or repurposed in malicious ways that can cause serious harm, for example using images of a child to produce deep fakes and child sexual abuse material (CSAM). A recent study[1] conducted by Perspectus Global highlighted that only 20 images of a child are needed to create a deepfake video of them, and parents upload an average of 63 images to social media every month. Furthermore, according to a report carried out by French organisation “Foundation pour l’enfance” (Children’s Foundation), 50% of children’s photos and videos shared on paedo-criminal forums have been initially published online by their own parents[2].
Vulnerability to unwanted contact: Photos and videos often contain information about the location and time at which the image was taken (due to the metadata, particularly GPS data) which can then also reveal valuable information about your children, such as their point of interests or the places they frequently attend. This information, when placed in the hands of ill-intended individuals, can have serious consequences.
Online reputation: Those delightful baby photos in silly outfits or toddler tantrum meltdown videos might not be so endearing to a thirteen-year-old. Embarrassing photos or videos can have a negative impact in the school setting (e.g. risk of bullying), or on the child’s personal and professional future, especially if they are shared widely and without the child's consent. Remember, what might seem like no big deal to share today, could be very problematic tomorrow.
Identity theft and fraud: According to Barclays[3], sharenting is the "weakest link" in risking online fraud and identity theft. Information that parents often post like their child's name, date of birth, the name of their school, or their favourite sports team, can be misused to hack passwords or for identity fraud scams. Barclays further estimated that by 2030, parents sharing images of their children online will account for two-thirds of identity fraud, with approx. 7 million incidents of identity theft and over £670 million in online fraud. [4]
[H5] Remember: When you share their life online, you risk sharing their personal data with the world. Pause before you post.

[1]. See report on RTE.ie for further information.
[2] Source: Report by the Children's Foundation, Generative AI, the new weapon of paedophile crime, October 2024 (Rapport de la Fondation pour l’enfance, l’IA generative, nouvelle arme de la pédocriminalité, oct. 2024) (as cited on www.cnil.fr)
[3] See report: 'Sharenting' puts young at risk of online fraud, May 2018.
[4] Ibid

Sharenting - Top TipsRead our blog post, which provides practical advice to limit these risks.
[H1] Background to Sharenting project between DPC and CNIL
In November 2025, the DPC launched its “Pause Before You Post” campaign to raise awareness of the potential risks and consequences of “sharenting” – the habitual sharing of personal information, photos and videos by parents of their children online.
This initiative has been carried out in conjunction with our French counterparts, the CNIL. As two Data Protection Authorities (DPAs) who are committed to the protection of children online, supporting digital literacy and empowering parents, this campaign contributes to both organisations’ current strategic priorities.
A digital parenting survey conducted in 2024 by the international Digital Education Working Group of the Global Privacy Assembly highlighted “sharenting” as an important emerging topic that is proving harmful to children’s rights and personal data.
Both DPAs considered it important to raise awareness amongst parents about this practice, which is becoming more prevalent and can have negative consequences for children’s privacy, autonomy and emotional well-being.
Objective of campaign
The objective of this campaign is to raise awareness of the risks associated with parents posting their children’s personal data online. Personal data is any type of information that helps identify who someone is. This can include things like someone’s name, address, and age, but can also include things such as photos/videos, voice recordings, information about someone’s health and wellbeing, and their likes and dislikes.
When all of this information is pieced together, it creates a digital footprint of someone’s online activity. By sharing images, videos and any kind of content featuring children, parents are (often unknowingly) creating a digital footprint for their child. This information can easily be pieced together by bad actors and lead to serious privacy and safety risks.

[H2] Further guidance related to children and data protection:
[IMG: The Fundamentals for a Child-Oriented Approach to Data Processing]
The Fundamentals for a Child-Oriented Approach to Data Processing
[IMG: Guidance for children on their data protection rights]
Guidance for Children on their Data Protection Rights
[IMG: Children, Parents and Data Protection: Can I make a complaint on behalf of my child?]
Children, Parents and Data Protection: Can I make a complaint on behalf of my child?
[IMG: My Child]
My Child's Data Protection Rights

[H2] FAQsFrequently Asked Questions

[H3]

General

See all articles

[H3]

Access and Rectification

See all articles

[H3]

Banking & Insurance Sector

See all articles

[H3]

Complaint Handling

See all articles

[H3]

Cookies

See all articles

[H3]

Direct Marketing

See all articles

[H3]

Initial Contact with DPC

See all articles

[H3]

Responsibilities of Data Controllers

See all articles

[H3]

Topical Data Protection Issues

See all articles

[IMG: This image represents a shield]
Data Protection- the BasicsThis section contains information about the basics of data protection, the principles of data protection, and a glossary of frequently used terms.
Rights of Individuals under the General Data Protection RegulationThis section contains information about your rights under the General Data Protection Regulation (GDPR)
Exercising Your RightsThis section contains information about how to exercise your rights under the GDPR and how to complain to the DPC.
EU-US Data Privacy FrameworkThis section contains an information note on the redress mechanism for EU/EEA individuals in relation to alleged violations of U.S. law with respect to their data collected by U.S authorities competent for national security, and an accompanying complaint form.

Data Protection BasicsThis section contains information about the basics of data protection, the principles of data protection, and a glossary of frequently used terms.
Know Your ObligationsThis section contains information about the obligations placed on organisations under data protection law.
Codes of ConductThis section contains information about Codes of Conduct under Articles 41 and 42 GDPR.
GDPR CertificationThis section contains information about Certification under Articles 42 and 43 GDPR.
Resources for OrganisationsThis section includes a number of resources available for organisations, including a self-assessment checklist, a guide to the DPC's complaint handling process, and information on the Law Enforcement Directive.
Rules for Electronic and Direct MarketingThis section contains information about the responsibilities of organisations using personal data for direct marketing purposes, including information on the National Directory Database and on electronic receipts.
International TransfersThis section contains information about the topic of international transfers under data protection law, including cross-border processing under the One Stop Shop mechanism, and transfers to international organisations or third countries.
InfographicsThis section contains downloadable printable infographics, each giving an overview of a different aspect of Data Protection.