7 April 2020
… Main legal reference Article 33 (Notification of a personal data breach to the supervisory authority) Article 34 (Communication of a personal data breach to the data subject) Keywords Data retention Right to erasure … the controller informs the complainant that his personal data have been the subject of a data leak. The controller …
9 June 2021
… privacy of sick employees 9 June 2021 Netherlands The Dutch Data Protection Authority (DPA) has imposed a fine of €15,000 on … about such things. That is for the in-house medical officer or the safety, health and welfare services to … The Dutch Data Protection Authority (DPA) has imposed a fine of …
… Guidelines During its first plenary meeting the European Data Protection Board endorsed the GDPR related WP29 Guidelines: … 2016/679, WP248 rev.01 Guidelines on Data Protection Officers ('DPO'), WP243 rev.01 Guidelines for identifying a … During its first plenary meeting the European Data Protection Board endorsed the GDPR related WP29 …
3 January 2024
… 2023 Cross-border case Hungarian National Authority for Data Protection and Freedom of Information (Hungarian Supervisory Authority, SA) and CSAs: Office for Personal Data Protection of the Slovak Republic (Slovak Supervisory … 2023 Cross-border case Hungarian National Authority for Data Protection and Freedom of Information (Hungarian …
3 September 2019
… and modalities for the exercise of the rights of the data subject) Article 13 (Information to be provided where personal data are collected from the data subject) Article 14 (Information to be provided where … and the link to a portal for en- quiries from data subjects are now also integrated as a contact option. …
13 May 2021
… DPA: Dragefossen AS fined 13 May 2021 Norway The Norwegian Data Protection Agency has fined the power company Dragefossen AS … on YouTube and the company’s own website. Up until the Data Protection Authority contacted the company, it was … The Norwegian Data Protection Agency has fined the power company …
5 January 2021
… based in Warsaw, which, as the controller of personal data, did not meet the obligation of cooperation with the … is closely related to obtaining and processing of personal data. The personal data protection regulations and the obligations they impose on … based in Warsaw, which, as the controller of personal data, did not meet the obligation of cooperation with the …
26 July 2019
… operations which are subject to the requirement for a Data Protection Impact Assessment under Article 35(4) of the General Data Protection Regulation (EU) 2016/679 (GDPR) Decision … 1 The list of types of personal data processing operations, for which carrying out a Data …
13 January 2021
… threat and remove it led the company ID Finance Poland to data loss. Therefore, the President of the Personal Data Protection Office (UODO) found that the company had not … threat and remove it led the company ID Finance Poland to data loss. Therefore, the President of the Personal Data …
2 September 2020
… of a Reprimand for the Processing of Students’ Personal Data 2 September 2020 Poland The President of the Personal Data Protection Office (UODO) imposed a penalty of a reprimand … The President of the Personal Data Protection Office (UODO) imposed a penalty of a …
13 September 2019
… be forgotten’)) Keywords Electronic communications Payment data Right to erasure Outcome No violation Summary 60.4KB … the complaint addressed to the CNIL by the Spanish data protection authority, m accordance with the provisions of … words: Right to erasure, Electronic communications, Payment dataSummary of the DecisionOrigin of the case The …
24 July 2020
… 17 (Right to erasure (‘right to be forgotten’)) Keywords Data subject rights Right to erasure Outcome Reprimand … reprimand Noisli Ltd. for an infringement of the General Data Protection Regulation (GDPR). Justification: Our decision is … 17) Decision: Reprimand to the Controller Key words: Data subjects right; Right to erasure Summary of the …
5 August 2020
… Main legal reference Article 33 (Notification of a personal data breach to the supervisory authority) Article 34 (Communication of a personal data breach to the data subject) Keywords Personal data breach Outcome No … DD 129284 FD 142719 Final Decision 1. Facts concerning the data breach - Controller: Applause GmbH - Incident: …
16 October 2018
… operations which are subject to the requirement for a Data Protection Impact Assessment under Article 35(4) of the General Data Protection Regulation (EU) 2016/679 (GDPR) Decision … HELLENIC DATA PROTECTION AUTHORITY Athens, 16-10-2018 Ref.: … operations which are subject to the requirement for a Data Protection Impact Assessment under Article 35(4) of the …
13 December 2019
… of provisions of Articles 12 and 13 of the General Data Protection Regulation (GDPR); the infringement of Article 5 … it provided clear, complete and correct information to the data subjects; fine in the amount of 23893 lei, the … of provisions of Articles 12 and 13 of the General Data Protection Regulation (GDPR); the infringement of …
12 September 2019
… of processing operations exempt from the requirement for a Data Protection Impact Assessment under Art 35(5) of the General Data Protection Regulation (EU) 2016/679 (GDPR) Decision … the list of the kind of processing operations for which a data protection impact assessment is not required The …
18 May 2020
… SE Main legal reference Article 15 (Right of access by the data subject) Article 16 (Right to rectification) Keywords … Sentrum Tollbugt 3 22 39 69 00 22 42 23 50 974 761 467 www.datatilsynet.no 0105 OSLO Unntatt offentlighet: Offl §13 jfr … We refer to your complaint recieved by the Danish Data Protection Authority (DPA) on February 10th 2019 against …
5 August 2019
… Article 13 (Information to be provided where personal data are collected from the data subject) Keywords Data subject rights Outcome No violation Summary 59.8KB … file number CDP/IMI/LSA/6/2019) received from the Spanish Data Protection Agency (Agencia Espanola de Proteccion de …
18 June 2020
… Article 5 (Principles relating to processing of personal data) Article 32 (Security of processing) Article 33 (Notification of a personal data breach to the supervisory authority) Article 34 (Communication of a personal data breach to the data subject) Keywords Data subject …
7 May 2020
… the complainant had requested the deletion of his personal data. The deletion of data was confirmed to him by e-mail. This e-mail was not … on is not available at Care.com Europe GmbH. Thus, no data protection violation could be determined. Furthermore, it … the complainant requested deletion of his personal data. The complainant received confirmation that his data …