Search results | European Data Protection Board

Slovenian SA: launch of coordinated enforcement on role of data protection officers
… the position in their organisations required by Art. 37-39 GDPR and Chapter 6 of the Personal Data Protection Act and … the position in their organisations required by Art. 37-39 GDPR and Chapter 6 of the Personal Data Protection Act and …
EDPB adopts guidelines on processing personal data through blockchains and is ready to cooperate with AI office on guidelines on AI Act and EU data protection law
14 April 2025
News
… organisations using these technologies to comply with the GDPR. In its guidelines, the EDPB explains how blockchains … organisations using these technologies to comply with the GDPR. In its guidelines, the EDPB explains how blockchains …
Det Europæiske Databeskyttelsesråd — ellevte plenarmøde: Retningslinjer for adfærdskodekser, bilag til retningslinjerne for akkreditering, bilag til retningslinjerne for certificering
5 June 2019
Press releases
… bistand i forbindelse med anvendelsen af artikel 40 og 41 i GDPR. Hensigten med retningslinjerne er at bidrage til at … bistand i forbindelse med anvendelsen af artikel 40 og 41 i GDPR. Hensigten med retningslinjerne er at bidrage til at …
Code of Conduct for Service Providers in Clinical Research
12 September 2024
Decision by the SA
… France Type Code for Controllers/Processors subject to GDPR Scope Transnational Opinion/Guideline References …
The Icelandic SA: HEI medical travel agency fined for an unlawful use of an e-mail address and not handling an access request
24 May 2022
News
… right of access (Article 15) Decision: infringement of the GDPR, fine 1.5 million ISK (approx. 10.700 Euros). Key … right of access (Article 15) Decision: infringement of the GDPR, fine 1.5 million ISK (approx. 10.700 Euros). Key …
Supervisory authorities of the Baltic States launch of coordinated inspection of the compliance of personal data processing in the field of short-term vehicle rental
27 July 2022
News
… the application of the General Data Protection Regulation (GDPR) and so proactively address potential threats to … the application of the General Data Protection Regulation (GDPR) and so proactively address potential threats to …
Danish DPA set to fine furniture company
11 June 2019
News
… data in the old system had never been deleted. The GDPR establishes that personal data must be stored in such a … data in the old system had never been deleted. The GDPR establishes that personal data must be stored in such a …
General Court: WhatsApp annulment action inadmissible
7 December 2022
News
… a draft decision of the Irish DPA concerning WhatsApp IE’s GDPR transparency obligations to both users and non-users of … a draft decision of the Irish DPA concerning WhatsApp IE’s GDPR transparency obligations to both users and non-users of …
Italian DPA imposes limitation on processing on TikTok after the death of a Girl from Palermo
26 January 2021
News
… with certainty. The SA decided to take urgent measures (GDPR, art. 58, comma 2, lett. f) and art. 66, comma 1) … with certainty. The SA decided to take urgent measures (GDPR, art. 58, comma 2, lett. f) and art. 66, comma 1) …
The role of DPOs at the heart of EU coordinated action for 2023
… they hold the position required by Articles 37 to 39 of the GDPR and whether they have the necessary resources to carry … they hold the position required by Articles 37 to 39 of the GDPR and whether they have the necessary resources to carry …
Personal data breach at the Breiðholt Upper Secondary School – Administrative fine
10 March 2020
News
… violations of, inter alia, Art. 5(1)f and Art. 32 of the GDPR. When determining the fine, the SA referred to the … violations of, inter alia, Art. 5(1)f and Art. 32 of the GDPR. When determining the fine, the SA referred to the …
CEF 2025: EDPB selects topic for next year’s Coordinated Action
10 October 2024
News
… the first semester of 2025. The right to erasure (Art.17 GDPR) is one of the most frequently exercised data … the first semester of 2025. The right to erasure (Art.17 GDPR) is one of the most frequently exercised data …
Polish SA: administrative fine of 210 € for failure to notify personal data breach to supervisory authority
28 November 2024
News
… Office then explained the procedure resulting from the GDPR. In the case of such an incident, the risk to which the … a fine of 210 € for infringement of Article 33 of the GDPR. For further information: Decision in national … Office then explained the procedure resulting from the GDPR. In the case of such an incident, the risk to which the …
Decision in the matter of Meta Platforms Ireland Limited and the "Instagram" social media network made pursuant to Section 111 of the Data Protection Act 2018
15 September 2022
Binding decision of the Board (Art. 65)
… Ireland Limited (Instagram) under Article 65(1)(a) GDPR …
The Norwegian SA issues fine to the Municipality of Østre Toten for flawed information security
7 July 2022
News
… the controller (Article 24) Decision: Infringement of the GDPR, Order to comply Key words: Cyber attack, Ransomware, … the controller (Article 24) Decision: Infringement of the GDPR, Order to comply Key words: Cyber attack, Ransomware, …
The Norwegian SA issues fine to the Norwegian Public Service Pension Fund
24 November 2021
News
… 5), Legal basis (Article 6) Decision: Infringement of the GDPR Key words: Income Data, Lack of Procedures, Special … 5), Legal basis (Article 6) Decision: Infringement of the GDPR Key words: Income Data, Lack of Procedures, Special …
Polish SA imposed fine for failing to implement appropriate technical and organisational measures
31 May 2023
News
… characteristics of a data breach within the meaning of the GDPR. The Polish SA, taking into account the scope of … characteristics of a data breach within the meaning of the GDPR. The Polish SA, taking into account the scope of …
Swedish SA: Administrative fine against bank for transferring customer data to Meta
2 September 2024
News
… bank has violated the general data protection regulation, GDPR, by not having taken appropriate technical and … bank has violated the general data protection regulation, GDPR, by not having taken appropriate technical and …
The Norwegian Supervisory Authority has fined the Norwegian Labour Inspection Authority
16 May 2022
News
… by the data subject (Art. 15) Decision: Infringement of the GDPR and fine imposed, Reprimand Key words: Credit rating … by the data subject (Art. 15) Decision: Infringement of the GDPR and fine imposed, Reprimand Key words: Credit rating …
Norwegian Supervisory Authority issues fine to Trumf
22 June 2022
News
… of Processing (Art. 32) Decision: Infringement of the GDPR and fine imposed Key words: unauthorised access, Lack … of Processing (Art. 32) Decision: Infringement of the GDPR and fine imposed Key words: unauthorised access, Lack …