Search results

  • EDPBI:FR:OSS:D:2021:201

    31 March 2021
    Decision by the SA
    … Main legal reference Article 33 (Notification of a personal data breach to the supervisory authority) Keywords Personal data breach Outcome Reprimand Decision 202.5KB Stáhnout … …

  • EDPBI:SE:OSS:D:2023:774

    30 May 2023
    … Main legal reference Article 33 (Notification of a personal data breach to the supervisory authority) Article 32 (Security of processing) Keywords Data security Sensitive data Personal data breach Outcome No …

  • EDPBI:DK:OSS:D:2021:190

    27 January 2021
    Decision by the SA
    … of processing) Article 33 (Notification of a personal data breach to the supervisory authority) Keywords Data security Personal data breach Employment Outcome No …

  • EDPBI:RO:OSS:D:2023:760

    24 April 2023
    … of processing) Article 33 (Notification of a personal data breach to the supervisory authority) Keywords Personal data breach Data security Outcome No sanction Decision …

  • EDPBI:DK:OSS:D:2022:380

    13 June 2022
    … of processing) Article 33 (Notification of a personal data breach to the supervisory authority) Keywords Data security Personal data breach Finance Outcome Reprimand …

  • EDPBI:AT:OSS:D:2023:860

    7 August 2023
    … Main legal reference Article 33 (Notification of a personal data breach to the supervisory authority) Keywords Encryption Notification of personal data breach Outcome Dismissal/Rejection of the case Decision …

  • EDPBI:NL:OSS:D:2020:173

    10 December 2020
    Decision by the SA
    … Main legal reference Article 33 (Notification of a personal data breach to the supervisory authority) Keywords Notification of personal data breach Administrative fine Outcome Administrative fine …

  • The French SA fines DISCORD EUR 800.000

    3 February 2023
    News
    … National case Controller: DISCORD INC. Legal Reference: Data retention periods (article 5.1.e of the GDPR), Information to individuals (article 13 of the GDPR), Data protection by default (article 25.2 of the GDPR), … public. The amount of the fine was decided regarding the breaches identified, the number of people concerned, but …

  • Whistle-blowing without privacy: the Italian SA fines hospital and IT service provider

    10 June 2022
    News
    … confidentiality); Art. 13 and 14 (Information); Art. 25 (Data protection by design and by default); Art. 28 … originated from a set of inspections on the processing of data acquired via whistle-blowing management systems, with … processing activities for which it was the controller (in breach of Article 28, paragraphs 1 and 3, GDPR) – ranging …

  • EDPBI:AT:OSS:D:2021:264

    4 August 2021
    … Main legal reference Article 33 (Notification of a personal data breach to the supervisory authority) Keywords Personal data breach Outcome No sanction Decision 152.1KB Stáhnout … …

  • EDPBI:FR:OSS:D:2021:297

    22 November 2021
    … of processing) Article 33 (Notification of a personal data breach to the supervisory authority) Keywords Data security Notification of personal data breach Outcome …

  • EDPBI:FR:OSS:D:2022:437

    28 July 2022
    … of processing) Article 33 (Notification of a personal data breach to the supervisory authority) Keywords Data security Encryption Notification of personal data

  • EDPBI:FR:OSS:D:2024:1433

    4 September 2024
    … NO Main legal reference Article 15 (Right of access by the data subject) Article 33 (Notification of a personal data breach to the supervisory authority) Keywords Personal data

  • EDPBI:SE:OSS:D:2022:465

    18 August 2022
    … of processing) Article 33 (Notification of a personal data breach to the supervisory authority) Keywords Definition of controller Personal data breach Outcome No violation Decision 75.3KB Stáhnout … …

  • EDPBI:DK:OSS:D:2023:734

    2 May 2023
    … of processing) Article 33 (Notification of a personal data breach to the supervisory authority) Article 34 (Communication of a personal data breach to the data subject) Keywords Data subject …

  • EDPBI:FR:OSS:D:2024:1411

    19 August 2024
    … of the controller) Article 33 (Notification of a personal data breach to the supervisory authority) Keywords Accountability Personal data breach Outcome Dismissal/Rejection of the case …

  • The French Supervisory Authority fines ORANGE €50 million

    23 January 2025
    News
    … spite of user consent withdrawal (Article 82 of the French Data Protection Act) Decision: Infringement of the French … Electronic Communications Code, Infringement of the French Data Protection Act, Administrative fine Key words: … spite of user consent withdrawal   Decision For these two breaches, the restricted committee decided to impose a …

  • EDPBI:DEHE:OSS:D:2020:162

    11 November 2020
    … of processing) Article 33 (Notification of a personal data breach to the supervisory authority) Article 34 (Communication of a personal data breach to the data subject) Keywords Data security …

  • EDPBI:NO:OSS:D:2021:219

    12 May 2021
    … of processing) Article 33 (Notification of a personal data breach to the supervisory authority) Keywords Data security Personal data breach Outcome No violation …

  • EDPBI:NO:OSS:D:2023:850

    21 June 2023
    … Article 5 (Principles relating to processing of personal data) Article 32 (Security of processing) Article 33 (Notification of a personal data breach to the supervisory authority) Keywords Data