Ireland’s government has appointed Niamh Sweeney, a former Meta lobbyist, as one of three commissioners at the Data Protection Commission, sparking fresh worries about Big Tech’s sway over Europe’s key privacy enforcer. This move, set to take effect on October 13, 2025, comes amid questions about the selection process that involved a lawyer linked to major tech firms.
Sweeney’s Background and New Role
Niamh Sweeney brings years of experience from her time at Meta, where she served as a public policy lead for Facebook Ireland and WhatsApp in Europe. She worked there for six years, handling government relations and policy matters before leaving in recent months.
Her appointment adds a third commissioner to the DPC, joining Des Hogan and Dale Sunderland, who took their roles earlier in 2024. Officials say this expansion aims to handle the growing demands of regulating data privacy under Europe’s General Data Protection Regulation.
Sweeney, a former journalist and ministerial adviser, now steps into a position that oversees privacy rules for giants like Google, TikTok, and X, all based in Ireland for their European operations.
The DPC has grown in size and responsibility over the past decade, becoming one of the largest EU data protection authorities. With Sweeney’s addition, the commission plans to boost oversight as artificial intelligence and digital rules evolve rapidly.
Details of the Selection Process
The Irish government chose Sweeney based on advice from the Public Appointments Service, which handles public job recruitments. A five-member panel interviewed candidates earlier this year, leading to her selection.
New details reveal that the panel included Leo Moore, a partner at William Fry law firm, who leads their technology group and advises several Big Tech companies. This raised eyebrows, as one competing candidate filed a conflict of interest complaint about Moore’s involvement.
The panel also featured Shirley Kavanagh as chair, Department of Justice Deputy Secretary Doncha O’Sullivan, ComReg head Garrett Blaney, and recruitment specialist Louise McEntee. Despite the complaint, the process moved forward, with Sweeney set to start her five-year term soon.
Officials defend the panel’s makeup, noting it follows standard procedures for high-level public appointments. However, critics argue it shows how intertwined Ireland’s economy is with tech firms, which contribute heavily to jobs and taxes.
Concerns Over Big Tech Influence
Critics have long accused the DPC of being too lenient on tech companies, pointing to delays in enforcing GDPR since it launched in 2018. It took years for the regulator to issue major fines, even as complaints piled up against firms like Meta.
Sweeney’s past as a lobbyist for Meta fuels these fears. Privacy advocates worry her experience could bias decisions favoring Big Tech, especially in ongoing cases involving data misuse and targeted ads.
Recent events add to the scrutiny. In 2024, the DPC faced backlash for lobbying EU guidelines that eased consent rules for social networks using personal data in advertising. This history makes Sweeney’s appointment a flashpoint for those pushing for stricter oversight.
Ireland’s reliance on tech giants is clear in economic data. Tech firms account for about 25 percent of the country’s corporate tax revenue, based on 2024 figures from the Irish Fiscal Advisory Council. This dependence raises questions about whether regulators can act independently.
Here are some key criticisms leveled at the DPC in recent years:
- Slow enforcement of GDPR fines, with major penalties only starting in 2021.
- Perceived favoritism toward U.S. tech companies headquartered in Dublin.
- Lack of transparency in handling cross-border data complaints from other EU nations.
Broader Implications for EU Privacy
Sweeney’s role could shape how Europe tackles emerging issues like AI-driven data collection and online privacy breaches. The DPC handles most GDPR cases for Big Tech, making its decisions felt across the 27-nation bloc.
Experts say this appointment highlights a revolving door between industry and regulation, similar to patterns seen in other sectors. For instance, in the U.S., former tech executives often join government roles, leading to debates over impartiality.
Looking ahead, the expanded DPC might impose tougher rules, but doubts persist. Privacy groups like NOYB, founded by activist Max Schrems, have sued the DPC multiple times for alleged failures, winning key court battles in 2023 and 2024.
A balanced view shows some progress: The DPC issued over 10 billion euros in fines by mid-2025, up from earlier years. Yet, many cases remain unresolved, leaving users waiting for stronger protections.
Key Players and Timeline
To clarify the main figures and events, here’s a quick table:
| Person/Entity | Role | Key Detail |
|---|---|---|
| Niamh Sweeney | New DPC Commissioner | Former Meta lobbyist, starts October 13, 2025 |
| Leo Moore | Selection Panel Member | Partner at William Fry, advises Big Tech |
| Des Hogan | Existing Commissioner | Appointed in February 2024 |
| Dale Sunderland | Existing Commissioner | Appointed in February 2024 |
| Data Protection Commission | Regulator | Enforces GDPR for EU-based tech giants |
This timeline underscores the rapid changes at the DPC amid growing digital challenges.
What This Means for Users and Businesses
For everyday users, stronger or weaker regulation affects how companies handle personal data, from social media tracking to health apps. Businesses, especially tech startups, watch closely as rules could shift compliance costs.
Logical reasoning suggests Ireland must balance economic benefits with fair enforcement to maintain EU trust. If perceptions of bias grow, other countries might push for decentralizing GDPR oversight, a debate that’s heated up in Brussels this year.
Recent related events include the EU’s 2025 AI Act, which adds more duties to bodies like the DPC. Sweeney’s expertise might help navigate these, but only if conflicts are managed openly.
Share your thoughts on this appointment in the comments below, and pass this article along to spark discussions about privacy in the digital age.
