22 June 2021
… for violation of the General Data Protection Regulation (GDPR). This case concerns insufficient risk assessment and … that the bank did not meet the requirements of the GDPR for risk assessment and appropriate technical measures … risk assessment and testing as required by the law. The GDPR requires that the data controller carry out risk …
7 April 2022
… også hjørnestenen i en effektiv håndhævelse i henhold til GDPR og et effektivt samarbejde mellem tilsynsmyndighederne. … indflydelse" i overensstemmelse med artikel 52, stk. 2, i GDPR. Desuden anfører Databeskyttelsesrådet, at … og råde over sit eget personale (artikel 52, stk. 5, i GDPR), hvilket kan føre til indirekte ekstern indflydelse på …
18 December 2019
… rights. The European General Data Protection Regulation (GDPR) gives us the opportunity to decisively punish … procedure to be in breach of Article 32 of the GDPR which obliges the company to take appropriate technical … comply with its legal requirement under Article 37 of the GDPR to appoint an internal data protection officer. When …
28 November 2024
… was inconsistent with the applicable provisions of the GDPR, due to an incorrectly conducted risk analysis, which … such as a risk register or confirmations of monitoring of GDPR procedures. However, the rules for using external data … for infringement of Articles 5, 24, 25 and 32 of the GDPR. What is more, appropriate organisational and technical …
2 July 2019
… access to his personal data in accordance with Article 15 GDPR. The controller attempted to provide the complainant … months after the deadline established under Article 12 (3) GDPR.Findings The LSA determined that the controller infringed Article 12(3) GDPR by exceeding the deadline to answer the complainant’s …
12 February 2019
… taken into consideration. Since the EDPB is required by the GDPR (art. 70(4)) to make the results of this consultation … such data, and repealing Directive 95/46/EC (hereinafter “GDPR”), Having regard to the EEA Agreement and in particular … OPINION: 1 INTRODUCTION 1. Regulation 2016/6791 (“the GDPR”) came into effect on 25 May 2018. One of the main …
1 December 2019
… been made. This is, however, mandatory under Art. 37 (7) GDPR. Violations of this requirement are subject to a fine in accordance with Art. 83 Para. 4 lit. a) GDPR. The fine may sound low at first sight. However, … been made. This is, however, mandatory under Art. 37 (7) GDPR. Violations of this requirement are subject to a fine …
9 June 2020
… supervisory authority has, infringing Article 58.1 of the GDPR. This infringement is typified in Article 83.5(e) of the GDPR and is classified for prescription purposes as very … supervisory authority has, infringing Article 58.1 of the GDPR. This infringement is typified in Article 83.5(e) of …
21 October 2020
… Data Protection Regulation (hereinafter referred to as the “GDPR”). The fine was imposed for infringements of Articles 5(1)(d) and 5(1)(f) of the GDPR, i.e. a failure to implement appropriate technical and … erased or rectified without delay (Article 5(1)(d) of the GDPR), and the principle of integrity and confidentiality …
21 June 2023
… as follows: Article 5(1)(c) and Article 5(1)(e) of the GDPR The DPC found that Airbnb’s retention of a copy of the … of this complaint in accordance with Article 60(7) of the GDPR. In light of the infringements of Article 5(1)(c) and … a reprimand to Airbnb pursuant to Article 58(2)(b) of the GDPR. In addition, the DPC made the following orders against …
7 September 2022
… of processing (Article 32) Decision: Infringement of the GDPR; administrative fine Key words: Security of Processing, … identity did indeed constitute a violation of article 32 GDPR. However, these security issues were resolved in less … article 5.2, article 24.1, article 32,1 and article 32.2 GDPR. The Litigation Chamber acknowledged the fact that the …
29 August 2019
… of Article 56.1 of the General Data Protection Regulation (GDPR). The complaint, submitted by , was dealing with the … to use all of the powers conferred to it under the GDPR and the law of January 6th, 1978 as run ended. …
27 January 2023
… that the company did not have the consent required by the GDPR for processing data on body mass indices and maximal … The consent requested did not meet the requirements of the GDPR as it was not specific and informed. The SA finds that … that the company did not have the consent required by the GDPR for processing data on body mass indices and maximal …
30 April 2025
… breach to the data subject) Decision: infringement of the GDPR, administrative fines imposed Key words: access … default, in conjunction with Articles 32, 33, and 34 of the GDPR, as well as an administrative fine of EUR 20,000 for … breach to the data subject) Decision: infringement of the GDPR, administrative fines imposed Key words: access …
20 March 2019
… its websites, in accordance with Articles 13 and 14 of the GDPR, by the publication of a document entitled ‘General Data Protection Regulation (GDPR)’. The LSA noted controller’s commitment in pursuing a … appropriately and demonstrated compliance with the GDPR, the LSA together with the CSAs agreed to proceed to …
21 December 2018
… register.Findings According to recital 47 and Art 6.1.f GDPR legitimate interest of the controller or of a third … were filed before the 25 May 2018. Articles 13 and 14 GDPR were thus not yet applicable. However, under the GDPR the data subjects are to be informed from which source …
21 March 2019
… the data subjects, pursuant to Article 33-34 of the GDPR. The NAIH launched an administrative control procedure, … regarding to Article 9 (1) and Article 33 (1) of the GDPR and the Hungarian Privacy Act Section 60 (1). DK was on … €) to DK for violating the provisions Article 33-34 of the GDPR because DK did not notify the high risk personal data …
20 May 2022
… 12(1), 13, 21(1), 21(2), 24(1), 25(1), and 25(2) of the GDPR, Order to comply with the above Articles, Imposing … the serious infringement of numerous articles of the GDPR for a long period, ordered the data controller to stop … continue the data processing if made compliant with the GDPR, and issued an administrative fine in HUF equal to …
7 September 2022
… Minimisation (Article 5.1.c) Decision: Infringement of the GDPR; Reprimand; Order to bring the processing operations into compliance with the GDPR Key words: Lawfulness; Purpose limitation; Data … to bring the processing operation into compliance with the GDPR by no longer requiring the conduct of a social and …
16 May 2023
… from May 25, 2018 until today. Contrary to Article 28 the GDPR, the data controller did not conclude a contract on … personal data , which is contrary to Article 32.2 of the GDPR. Due to not undertaking appropriate measures, the … EUR due to violations of Articles 13, 28 and 32 of the GDPR. For further information: Agenciji za naplatu …