Search results | European Data Protection Board

Verhaltensregeln / Code of Conduct für die Ausübung des Gewerbes der Adressverlage und Direktmarketingunternehmen gemäß § 151 GewO 1994
7 August 2020
Decision by the SA
… Austria Type Code for Controllers/Processors subject to GDPR Scope National Monitoring Body Austrian Standards plus …
Code of Conduct for the health sector concerning entities performing medical activities and processors
11 December 2023
Decision by the SA
… Poland Type Code for Controllers/Processors subject to GDPR Scope National Monitoring Body KPMG Advisory Ltd …
Decision in the matter of Meta Platforms Ireland Limited and the "Instagram" social media network made pursuant to Section 111 of the Data Protection Act 2018
15 September 2022
Binding decision of the Board (Art. 65)
… Ireland Limited (Instagram) under Article 65(1)(a) GDPR …
Verhaltensregeln / Code of Conduct für die Ausübung des Gewerbes der Bilanzbuchhaltungsberufe (Bilanzbuchhalter, Buchhalter, Personalverrechner)
6 November 2020
Decision by the SA
… Austria Type Code for Controllers/Processors subject to GDPR Scope National Monitoring Body 1) DSGVO-ZT GmbH, …
Code of Conduct concerning the Protection of Personal Data Processed in Small Medical Facilities
14 December 2022
Decision by the SA
… Poland Type Code for Controllers/Processors subject to GDPR Scope National Monitoring Body RS Jamano Ltd Pursuant …
Code of Conduct for the processing of personal data by private research agencies
24 November 2025
Decision by the SA
… Poland Type Code for Controllers/Processors subject to GDPR Scope National Monitoring Body Omni Modo sp. z o.o. …
Decision in the matter of TikTok Technology Limited made pursuant to Section 111 of the Data Protection Act, 2018 and Articles 60 and 65 of the General Data Protection Regulation
15 September 2023
Binding decision of the Board (Art. 65)
… the Irish SA regarding TikTok Technology Limited (Art. 65 GDPR) …
Polish DPA imposes a fine on Pactum Poland Sp. z o.o. for lack of cooperation
24 February 2022
News
… 31), Powers (Art. 58 (1)(e)) Decision: infringement of GDPR, fine issued Key words: investigative powers, lack of … 31), Powers (Art. 58 (1)(e)) Decision: infringement of GDPR, fine issued Key words: investigative powers, lack of …
Swedish DPA: Incorrect use of 24/7 surveillance of firefighters
10 June 2021
News
… of the Rescue Service in Östra Skaraborg for violations of GDPR. The camera surveillance has recently ceased. For … of the Rescue Service in Östra Skaraborg for violations of GDPR. The camera surveillance has recently ceased. For …
Decision concerning a complaint directed against Meta Platforms Ireland Limited in respect of the Facebook service made pursuant to Section 113 of the Data Protection Act 2018 (Inquiry 18-5-5)
12 January 2023
Decision by the SA
… Platforms Ireland Limited and its Facebook service (Art. 65 GDPR) …
Data Pro Code
20 August 2020
Decision by the SA
… Netherlands Type Code for Controllers/Processors subject to GDPR Scope National Opinion/Guideline References Guidelines …
CoC regulating the sector of job agencies
11 January 2024
Other
… Italy Type Code for Controllers/Processors subject to GDPR Scope National Monitoring Body (website under …
Norwegian Supervisory Authority: Mowi ASA reprimanded and ordered to update its procedures
26 April 2022
News
… Key Findings This case is an important reminder that the GDPR's requirement to provide information also applies when … Key Findings This case is an important reminder that the GDPR's requirement to provide information also applies when …
Personal data breach at the National Center of Addiction Medicine – Administrative fine
10 March 2020
News
… violations of, inter alia, Art. 5(1)f and Art. 32 of the GDPR. When determining the fine, the SA referred to the … violations of, inter alia, Art. 5(1)f and Art. 32 of the GDPR. When determining the fine, the SA referred to the …
Finnish SA: pharmacy company Yliopiston Apteekki issued administrative fine for online shop data protection shortcomings
17 June 2025
Press releases
… was found to have infringed Articles 32 and 5.1.f of the GDPR. An administrative fine was imposed on Yliopiston … was found to have infringed Articles 32 and 5.1.f of the GDPR. An administrative fine was imposed on Yliopiston …
The Norwegian Supervisory Authority issues fine for automatic forwarding of e-mail
15 March 2022
News
… 21), Information (Art. 13) Decision: Infringement of the GDPR and fine imposed, Order to comply Key words: Access … 21), Information (Art. 13) Decision: Infringement of the GDPR and fine imposed, Order to comply Key words: Access …
The Icelandic SA: fine imposed on Harpa Concert Hall for the collection of the ID number and date of birth of a data subject
24 May 2022
News
… of processing (Article 6) Decision: infringement of the GDPR, order to comply, fine 1 million ISK (approx. 7.200 … of processing (Article 6) Decision: infringement of the GDPR, order to comply, fine 1 million ISK (approx. 7.200 …
Código de Conducta tratamiento de datos en la actividad publicitaria / Code of Conduct data processing in advertising activities
10 October 2023
Decision by the SA
… Spain Type Code for Controllers/Processors subject to GDPR Scope National Opinion/Guideline References Guidelines …
Polish SA: Not just negative consequences, but the risk of their occurrence as a reason for breach notification
3 March 2022
News
… data subject (Article 34(1)) Decision: Infringement of the GDPR, administrative fine Key words: information … data subject (Article 34(1)) Decision: Infringement of the GDPR, administrative fine Key words: information …
Romanian Supervisory Authority's fine of 9,544.40 lei (EUR 2,000) against Telekom Romania Mobile Communications SA
25 November 2019
News
… provided by Article 5 paragraph (1) letter d) of the GDPR. Thus, according to Article 5 paragraph (1) letter d) … provided by Article 5 paragraph (1) letter d) of the GDPR. Thus, according to Article 5 paragraph (1) letter d) …