Search results | European Data Protection Board

Opinion 7/2018 on the draft list of the competent supervisory authority of Greece regarding the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR)
3 October 2018
Opinion of the Board (Art. 64)
… the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR) 3 October … the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR) Adopted on … the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR) …
Dutch DPA imposes fine of €525,000 on Locatefamily.com
12 May 2021
News
… on Locatefamily.com 12 May 2021 Netherlands The Dutch Data Protection Authority (DPA) has imposed a fine of €525,000 on … of a representative in the EU is a breach of the General Data Protection Regulation (GDPR) and is the reason the fine … The Dutch Data Protection Authority (DPA) has imposed a fine of …
Opinion 01/2019 on the draft list of the competent supervisory authority of the Principality of Liechtenstein regarding the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR)
23 January 2019
Opinion of the Board (Art. 64)
… the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR) 23 January … the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR) Adopted on … the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR) …
Support Pool of Experts (SPE) Programme
… . The main objective of this programme is to help European Data Protection Authorities (DPAs) increase their capacity to … AI Auditing by Dr. Gemma GALDON CLAVELL Data Protection Officer training by Dr. Tihomir Katulić AI Risks: Optical … . The main objective of this programme is to help European Data Protection Authorities (DPAs) increase their capacity …
Hungarian SA’s procedure on the handling of unsubscribe from newsletter
12 December 2023
News
… Complainant lodged a complaint by e-mail with the Romanian data protection authority concerning an unsuccessful unsubscribe … As this involved the cross-border processing of personal data, an Internal Market System (IMI) procedure was launched … Complainant lodged a complaint by e-mail with the Romanian data protection authority concerning an unsuccessful …
Opinion 6/2018 on the draft list of the competent supervisory authority of Estonia regarding the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR)
3 October 2018
Opinion of the Board (Art. 64)
… the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR) 3 October … the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR) Adopted on … the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR) …
Guidelines 1/2020 on processing personal data in the context of connected vehicles and mobility related applications
28 January 2020
Guidelines
… Guidelines 1/2020 on processing personal data in the context of connected vehicles and mobility … reference: 1/2020 Guidelines 1/2020 on processing personal data in the context of connected vehicles and mobility … Topics: New Technology e-Privacy The European Data Protection Board welcomes comments on the Guidelines 1/2020 …
Opinion 4/2018 on the draft list of the competent supervisory authority of Czech Republic regarding the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR)
3 October 2018
Opinion of the Board (Art. 64)
… the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR) 3 October … the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR) Adopted on … the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR) …
EDPBI:DEBB:OSS:D:2019:53
2 October 2019
… PL Main legal reference Article 15 (Right of access by the data subject) Article 5 (Principles relating to processing of personal data) Keywords Identity verification Legal age Right of … complainant filed a complaint against ith the Austrian data protection authority ("ÖDSB") regarding the roof of …
Polish SA: administrative fines for GDPR infringements in the organisation of an election by postal vote in 2020 – 23 757 € for Minister of Digital Affairs and 6 444 174 € for the Polish Post
2 May 2025
News
… Article 5 (Principles relating to processing of personal data), Article 6 (Lawfulness of processing), Article 83 … administrative fine Key words: administrative fine, data subject rights, Principles relating to processing of … the the Polish SA's President of the Personal Data Protection Office established that, without a legal basis, …
Opinion 13/2019 on the draft list of the competent supervisory authority of France regarding the processing operations exempt from the requirement of a data protection impact assessment (Article 35(5) GDPR)
12 July 2019
Opinion of the Board (Art. 64)
… the processing operations exempt from the requirement of a data protection impact assessment (Article 35(5) GDPR) 12 July … the processing operations exempt from the requirement of a data protection impact assessment (Article 35(5) GDPR) Adopted on … the processing operations exempt from the requirement of a data protection impact assessment (Article 35(5) GDPR) …
Italian DPA: Green light from the Italian SA subject to adequate safeguards
10 June 2021
News
… ensure the current validity of a green pass in line with data protection principles; furthermore, checks based on this app will only disclose the data subject’s name without displaying any other information … ensure the current validity of a green pass in line with data protection principles; furthermore, checks based on …
EDPBI:DEBE:OSS:D:2020:136
4 September 2020
… Main legal reference Article 33 (Notification of a personal data breach to the supervisory authority) Article 34 (Communication of a personal data breach to the data subject) Keywords Personal data breach Phishing emails … The Berlin DPA closes the case. 1. Facts concerning the data breach - Controller: Apassionata World GmbH - Incident: …
Polish DPA imposes 100 000 PLN fine on the Surveyor General of Poland
2 September 2020
News
… Infringement of the principle of lawfulness of personal data processing and making intentionally available without a … and the evidence proving the appointment of the Data Protection Officer. As a result, the President of the UODO imposed an … Infringement of the principle of lawfulness of personal data processing and making intentionally available without a …
Guidelines 3/2018 on the territorial scope of the GDPR (Article 3)
23 November 2018
Guidelines
… 3) - version adopted after public consultation The European Data Protection Board welcomes comments on the Guidelines 3/2018 … In addition, if your comments also contain personal data, and you accept the publication of such data, please … 19 3 Adopted The European Data Protection Board Having regard to Article 70 (1)(e) of …
EDPB-EDPS Joint Opinion 1/2021 on standard contractual clauses between controllers and processors
14 January 2021
EDPB/EDPS Joint Opinion
… ..................................................7 4.2.5 Data Subject rights (Clause 8 of the Draft … Adopted 3 The European Data Protection Board and the European Data Protection … natural persons with regard to the processing of personal data and on the free movement of such data, and repealing …
Guidelines 07/2020 on the concepts of controller and processor in the GDPR
6 September 2020
Guidelines
… Type: Guidelines Topics: Controller Processor The European Data Protection Board welcomes comments on the Guidelines … set out in the Regulation and in accordance with applicable data protection rules. All legal details can be found in our … play a crucial role in the application of the General Data Protection Regulation 2016/679 (GDPR), since they …
Guidelines 06/2020 on the interplay of the Second Payment Services Directive and the GDPR
22 July 2020
Guidelines
… Type: Guidelines Topics: Financial matters The European Data Protection Board welcomes comments on the Guidelines … set out in the Regulation and in accordance with applicable data protection rules. All legal details can be found in our … 14 4 The processing of silent party data …
Decision of the FI SA regarding the approval of the requirements for accreditation of a code of conduct monitoring body pursuant to Article 41 GDPR
29 January 2021
Decision by the SA
… 1 (10) Office of the Data Protection Ombudsman P.O. Box 800, 00531 Helsinki, Finland – … with regard to the processing of their per- sonal data and on the free movement of such data, and repealing … 1 (3) Office of the Data Protection Ombudsman P.O. Box 800, 00531 Helsinki, …
Guidelines 1/2018 on certification and identifying certification criteria in accordance with Articles 42 and 43 of the Regulation 2016/679
30 May 2018
Guidelines
… - version adopted after public consultation The European Data Protection Board welcomes comments on the Guidelines 1/2018 … In addition, if your comments also contain personal data, and you accept the publication of such data, please … 9 4.3. The European Data Protection Seal …