European Data Protection Board

Binding Decision 5/2022 on the dispute submitted by the Irish SA regarding WhatsApp Ireland Limited (Art. 65 GDPR)

5 December 2022

Binding decision of the Board (Art. 65)

The EDPB Binding Decision 5/2022 relates to a complaint-based inquiry on the lawfulness and fairness of the processing for service improvement, and addresses several questions including, in particular, whether the processing of personal data for the performance of a contract is a suitable legal basis for such processing operation.

Please find the decision of the IE SA in the EDPB Register for Decisions taken by supervisory authorities and courts on issues handled in the consistency mechanism or directly here

Data Protection Day 2023

27 January 2023

EDPB

The Polish SA has once again investigated Virgin Mobile's personal data breach

20 January 2023

Poland

Ramboll Group

Type of BCR:

Controller

2023

DK SA

Categories of data subjects

Employees, suppliers, service providers and customers, including their contact persons

Opinion / Binding decision References

Opinion 32/2022 on the draft decision of the Danish Supervisory Authority regarding the Controller Binding Corporate Rules of the Ramboll Group

Opinion 32/2022 on the draft decision of the Danish Supervisory Authority regarding the Controller Binding Corporate Rules of the Ramboll Group

6 December 2022

Opinion of the Board (Art. 64)

The Norwegian SA fines Recover AS for violation of privacy

20 January 2023

Norway

The Norwegian SA fines Krokatjønnvegen 15 AS

20 January 2023

Norway

Clubhouse fined EUR 2 million by the Italian SA

20 January 2023

Italy

Estonian SA: Ticketer OÜ, shortcomings in privacy policy, third-party cookies on a website without consent

20 January 2023

Estonia

Estonian SA: Krediidiregister OÜ, legal basis for disclosure of non-payment data to third parties, shortcomings in privacy policy

20 January 2023

Estonia