11 January 2021
… Polish DPA Fines ENEA S.A.: A data breach must be notified to the supervisory authority 11 … 000) on ENEA S.A. company for failing to notify a personal data breach. The Personal Data Protection Office (UODO) received information about the … 000) on ENEA S.A. company for failing to notify a personal data breach. The Personal Data Protection Office (UODO) …
20 July 2020
… be carried out 20 July 2020 The President of the Personal Data Protection Office (UODO), after having conducted an … protection, and whether GGK has appointed a Data Protection Officer. Unfortunately, due to the lack of access by the … The President of the Personal Data Protection Office (UODO), after having conducted an …
13 February 2025
… Information System (IMI) transparency obligations for data controllers . In addition, in July 2023, the CSC … ‘Europol’s information systems - a guide for exercising data subjects’ rights: the right of access, rectification, … programme 2025-2026 . To ensure a continuous high level of protection of individuals’ rights, the Committee will …
… of 23 October 2018. Article 62 provides that the European Data Protection Supervisor (EDPS) and the national supervisory … coordinating the supervision of the processing of personal data in an EU large scale IT system or body, office or … of 23 October 2018. Article 62 provides that the European Data Protection Supervisor (EDPS) and the national …
6 February 2025
… Article 24 (Responsibility of the controller), Article 25 (Data protection by design and by default), Article 32 (Security … Article 5 (Principles relating to processing of personal data), Article 28 (Processor), Article 34 (Communication of … Article 24 (Responsibility of the controller), Article 25 (Data protection by design and by default), Article 32 …
7 May 2021
… a special webpage. Check it out here to learn more about data protection and privacy in the EU. For more information … a special webpage. Check it out here to learn more about data protection and privacy in the EU. For more information …
9 July 2019
… International, Inc more than £99 million under GDPR for data breach 9 July 2019 United Kingdom Statement in response … Office (ICO) intends to fine it for breaches of data protection law. Following an extensive investigation … Office (ICO) intends to fine it for breaches of data protection law. Following an extensive investigation …
20 April 2023
… Article 5 (Principles relating to processing of personal data), Article 24 (Responsibility of the controller), Article 25 (Data protection by design and by default), Article 32 (Security … of more than 5 300 EUR (23 580 PLN) on the Disciplinary Officer of the Bar Association for breaching the provisions …
19 March 2021
… Sp. z o.o. company breached the provisions of the General Data Protection Regulation (GDPR) by not cooperating with Polish Data Protection Authority in the scope of performing the … Sp. z o.o. company breached the provisions of the General Data Protection Regulation (GDPR) by not cooperating with …
8 July 2019
… Intention to fine British Airways £183.39m under GDPR for data breach 8 July 2019 United Kingdom Following an … British Airways £183.39M for infringements of the General Data Protection Regulation (GDPR). The proposed fine relates to a … British Airways £183.39M for infringements of the General Data Protection Regulation (GDPR). The proposed fine relates …
6 February 2025
… Article 24 (Responsibility of the controller), Article 25 (Data protection by design and by default), Article 32 (Security … Article 5 (Principles relating to processing of personal data) Decision: Administrative fine, Compliance order Key … Article 24 (Responsibility of the controller), Article 25 (Data protection by design and by default), Article 32 …
26 April 2023
… end on 15 May 2024. The following Heads of national data protection authorities (DPAs) expressed their interest to … end on 15 May 2024. The following Heads of national data protection authorities (DPAs) expressed their interest to …
16 September 2025
… Article 5 (Principles relating to processing of personal data), Article 24 (Responsibility of the controller), Article 25 (Data protection by design and by default), Article 32 (Security … Article 5 (Principles relating to processing of personal data), Article 24 (Responsibility of the controller), …
16 December 2019
… and modalities for the exercise of the rights of the data subject) Article 13 (Information to be provided where personal data are collected from the data subject) Article 14 (Information to be provided where … Nationale de l’Informatique et des Libertés (French Data Protection Authority), Having regard to Treaty no. 108 …
… Strategy to streamline enforcement and cooperation among Data Protection Authorities (DPAs). Each year, DPAs select the … on the designation and position of data protection officers (DPOs), 2023 Coordinated Enforcement Action, … Strategy to streamline enforcement and cooperation among Data Protection Authorities (DPAs). Each year, DPAs select …
25 September 2020
… prior consent as well as neglecting the rights of the data subject 25 September 2020 Finland Financial sanction … prior consent as well as neglecting the rights of the data subject The sanctions board of the Finnish Data Protection Ombudsman has imposed an administrative fine on …
7 October 2021
… SA: Police reprimanded for illegal processing of personal data with facial recognition software 7 October 2021 Finland … Reference: Art. 14 in the Act on the Processing of Personal Data in Criminal Matters and in Connection with Maintaining … Summary of the Decision Origin of the case The Deputy Data Protection Ombudsman has issued a statutory reprimand to the …
10 October 2019
… Information and Data Protection Commissioner Vs COMPLAINT Reference is made to … main establishment as when we asked for the data protection officer, at that time, he/she was not present. INVESTIGATION … Cooperation with the supervisory authority, Exercise of data subjects’ rights, Marketing communicationsSummary of …
15 July 2025
… Article 5 (Principles relating to processing of personal data), Article 6 (Lawfulness of processing), Article 9 (Processing of special categories of personal data) Decision: Administrative fine Key words: … recalled that, according to the GDPR and the Italian Data Protection Code, the use of biometric data in the workplace …
7 October 2019
… 1/6 Ref No. UOOU-03390/19-7 ORDER The Office for Personal Data Protection, as the competent administrative authority … in the Commercial Register maintained by the the executive officer of which is born DD Month YYYY, residing at Address … Key words: Lawfulness of processing, Legitimate interest, Data subject rightsSummary of the DecisionOrigin of the case …