European Data Protection Board

Polish SA: administrative fine of 5 625 € for failure to implement appropriate technical and organisational measures to ensure security

6 February 2025

Poland

Polish SA: administrative fine of 928 498,06 € for failure to inform data breach victims

6 February 2025

Poland

Polish SA: administrative fine of 81 000 € for failure to implement appropriate technical and organisational measures to ensure security

6 February 2025

Poland

Polish SA: administrative fine of 19 800 € for failure to notify a personal data breach to the supervisory authority

6 February 2025

Poland

Polish SA: administrative fine of 6 800 € for failure to notify a personal data breach to the supervisory authority

6 February 2025

Poland

Polish SA: administrative fine of 5 814 € for failure to designate a Data Protection Officer and failure to publish their contact details and to notify the supervisory authority

6 February 2025

Poland

Polish SA: administrative fine of 5 700 € for failure to implement appropriate technical and organisational measures to ensure security

6 February 2025

Poland

Latvia SAs list of types of processing operations, for which no data protection impact assessment is required in accordance with Art. 35.5 of the GDPR

Decision Type

SA

Latvia

14 October 2024

Data Protection Impact Assessment (DPIA)

Latvia SAs list of types of processing operations 198.7KB

Opinion / Binding decision References

Opinion 6/2024 on the draft list of the Latvian SA on pro-cessing operations exempt from the data protection impact assessment requirement (Art. 35.5 GDPR)

G7 Data Protection and Privacy Authorities Roundtable

18 - 19 June 2025

Navigate: A Digital Policy Leadership Retreat

24 - 28 June 2025