Search results | European Data Protection Board

Data Protection Code of Conduct for Cloud Infrastructure Service Providers
3 June 2021
Decision by the SA
… France Type Code for Controllers/Processors subject to GDPR Scope Transnational Monitoring Body EY CERTIFYPOINT BV … 2021_cispe_cloud_iaas_data_protection_code_of_conduct_-_gdpr_compliance.pdf 1.4MB Herunterladen file 1 …
EDPBI:UK:OSS:D:2020:147
16 October 2020
… measures, as required by Article 5(1)(f) and by Article 32 GDPR. The LSA concluded that there are a number of … constitute a serious failure to comply with the GDPR. The LSA decided to impose on the controller an …
Swedish DPA: Investigation of 1177-incident finalized
11 June 2021
News
… calling 1177 with information according to the rules in the GDPR and the Patient Records Act, for example how their … and medical care laid down by law. This is a breach of the GDPR’s principle of lawfulness. Further to the … on behalf of Medhelp. The Data Protection Regulation, the GDPR, lays down obligations also for processors, i.e. …
Reprimand for disclosure of the list of quarantined persons
25 November 2020
News
… constitutes personal data within the meaning of the GDPR, and the fact that persons are in quarantine … controller is subject to the obligations resulting from the GDPR. UODO also took into account that the confidentiality … to ensure the security of processing. Article 33(1) of the GDPR sets forth that in the case of a personal data breach, …
Norwegian DPA issues fine to Gveik AS
11 February 2021
News
… personal purposes The General Data Protection Regulation (GDPR) requires that all processing of personal data must … personal purposes The General Data Protection Regulation (GDPR) requires that all processing of personal data must …
Polish SA: administrative fine of 330 000 € for a medical company after a hacker attack
28 November 2024
News
… 330 000 € for infringement of Article 5, 24 and 32 of the GDPR and has ordered the controller to bring processing … operations into compliance with the provisions of GDPR). For further information: Decision in national … 330 000 € for infringement of Article 5, 24 and 32 of the GDPR and has ordered the controller to bring processing …
Norwegian DPA: Waxing Palace AS fined
28 October 2021
News
… to be in breach of the General Data Protection Regulation (GDPR). The fine amount is based on an overall assessment, … to be in breach of the General Data Protection Regulation (GDPR). The fine amount is based on an overall assessment, …
Polish DPA fines Smart Cities: Another fine for lack of cooperation with the Personal Data Protection Office
2 February 2021
News
… supervisory authority within the remit of Article 51 of the GDPR, UODO monitors and enforces the application of this … supervisory authority within the remit of Article 51 of the GDPR, UODO monitors and enforces the application of this …
EU Cloud Code of Conduct
20 May 2021
Decision by the SA
… Belgium Type Code for Controllers/Processors subject to GDPR Scope Transnational Monitoring Body Scope Europe, …
Dutch SA fines Transavia for poor personal data security
23 September 2021
News
… Article 32 (1) and (2) Decision: Infringement of the GDPR, administrative fine Key words: Security of processing, … Article 32 (1) and (2) Decision: Infringement of the GDPR, administrative fine Key words: Security of processing, …
First fine by the Romanian Supervisory Authority
26 June 2019
News
… safeguards in the processing, in order to meet the GDPR requirements and to protect the rights of the data … statement/details. Pursuant to Article 5 (1) c) of GDPR (“Principles relating to processing of personal data”), … safeguards in the processing, in order to meet the GDPR requirements and to protect the rights of the data …
Second fine by the Romanian Supervisory Authority
2 July 2019
News
… the personal data breach provided by Article 33 of GDPR. The General Regulation on Data Protection establishes, … and updated where necessary.” Moreover, Recital (75) of GDPR states that: “The risk to the rights and freedoms of … the personal data breach provided by Article 33 of GDPR. The General Regulation on Data Protection establishes, …
The Norwegian SA imposes fine against Elektro & Automasjon Systemer AS
13 December 2021
News
… Legal basis (Article 6) Decision: Infringement of the GDPR declared and fine imposed, order to establish … Legal basis (Article 6) Decision: Infringement of the GDPR declared and fine imposed, order to establish …
Autodesk Group
24 May 2022
… decision Autodesk processor 401.8KB Herunterladen Pre-GDPR No … Autodesk Group …
Autodesk Group
24 May 2022
… national decision Autodesk 2023 402.8KB Herunterladen Pre-GDPR No … Autodesk Group …
January 18th & February 1st plenary sessions - adopted documents
8 February 2022
News
… of the Luxembourg Supervisory Authority regarding the GDPR – CARPA certification criteria 8 February 2022 …
Malta Authorisation for the use of an Administrative Arrangement between EEA and non-EEA Financial Supervisory Authorities
13 August 2019
Decision by the SA
… of an Administrative Arrangement pursuant to Article 46.3.b GDPR 67KB Herunterladen Opinion / Binding decision …
CoC 01 Verhaltensregeln für die Prüf- und Löschfristen von personenbezogenen Daten durch die deutschen Wirtschaftsauskunfteien
11 August 2020
Other
… Germany Type Code for Controllers/Processors subject to GDPR Scope National Monitoring Body TIGGES DCO GmbH …
Groupon International Limited
6 May 2022
… International Limited 165.2KB English Herunterladen Pre-GDPR No … Groupon International Limited …
German Authorisation for the use of an Administrative Arrangement between EEA and non-EEA Financial Supervisory Authorities
24 April 2019
Decision by the SA
… of an Administrative Arrangement pursuant to Article 46.3.b GDPR 161.3KB Deutsch English Herunterladen Opinion / Binding …