7 May 2020
… the complainant had requested the deletion of his personal data. The deletion of data was confirmed to him by e-mail. This e-mail was not … on is not available at Care.com Europe GmbH. Thus, no data protection violation could be determined. Furthermore, it … the complainant requested deletion of his personal data. The complainant received confirmation that his data …
16 March 2019
… operations which are subject to the requirement for a Data Protection Impact Assessment under Article 35(4) of the General Data Protection Regulation (EU) 2016/679 (GDPR) Decision … Norwegian Data Protection Authority UNOFFICIAL TRANSLATION Postal Address: … operations which are subject to the requirement for a Data Protection Impact Assessment under Article 35(4) of the …
16 October 2018
… operations which are subject to the requirement for a Data Protection Impact Assessment under Article 35(4) of the General Data Protection Regulation (EU) 2016/679 (GDPR) Decision … fields of application Examples 1 Processing of biometric data for the unique identification of natural per- sons if …
15 November 2018
… operations which are subject to the requirement for a Data Protection Impact Assessment under Article 35(4) of the General Data Protection Regulation (EU) 2016/679 (GDPR) Decision … List of Types of Data Processing Operations which require a Data Protection Impact Assessment. Introduction Article 35 of the …
27 January 2020
… and modalities for the exercise of the rights of the data subject) Article 17 (Right to erasure (‘right to be … that took place between the CNIL's services and the Data Protection Officer of in the framework of the examination of … The complainant requested to have his account and personal data deleted and objected to the reception of direct …
28 February 2024
… 28 February 2024 EDPB Brussels, 28 February - The European Data Protection Board has kicked off its Coordinated Enforcement … 2022, and the designation and position of Data Protection Officers, in 2023 . For further information: AT DPA: … Brussels, 28 February - The European Data Protection Board has kicked off its Coordinated …
20 February 2020
… and modalities for the exercise of the rights of the data subject) Article 21 (Right to object) Keywords … that took place between the CNIL's services and the Data Protection Officer (hereinafter "DPO") of in the framework … and modalities for the exercise of the rights of the data subject (Article 12) Right to object (Article 21) …
16 May 2023
… Article 5 (Principles relating to processing of personal data), Article 24 (Responsibility of the controller), Article 25 (Data protection by design and by default), Article 32 (Security … Article 5 (Principles relating to processing of personal data), Article 24 (Responsibility of the controller), …
6 July 2020
… to be forgotten’)) Article 21 (Right to object) Keywords Data subject rights Outcome Dismissal/Rejection of the case … 72790 DD 103674 Final Decision The Berlin Commissioner for Data Protection and Freedom of Information (Berlin DPA) decides … of the case Key words: Exercise of the rights of the data subjects, Spam Summary of the Decision Origin of the …
2 February 2022
… Article 5 (Principles relating to processing of personal data) Article 6 (Lawfulness of processing) Article 7 … Article 32 (Security of processing) Article 35 (Data protection impact assessment) Article 37 (Designation of the data protection officer) Keywords Advertising E-Commerce Lawfulness of …
10 October 2019
… SK Main legal reference Article 15 (Right of access by the data subject) Article 17 (Right to erasure (‘right to be … Article 21 (Right to object) Keywords Advertising Data subject rights Right to erasure Right to object Outcome … REPUBLIC OF CYPRUS OFFICE OF THE COMMISSIONER FOR PERSONAL DATA PROTECTION Our ref. 11.17.001.006.052 10 October 2019 …
8 February 2019
… operations which are subject to the requirement for a Data Protection Impact Assessment under Article 35(4) of the General Data Protection Regulation (EU) 2016/679 (GDPR) Decision … 1 List of processing operations subject to data protection impact assessment Office for Personal Data …
6 July 2021
… with robocalls without consent 6 July 2021 Finland The Data Protection Ombudsman’s sanctions board has imposed an administrative fine on a magazine publisher due to data protection violations related to direct marketing. The … The Data Protection Ombudsman’s sanctions board has imposed an …
5 August 2020
… Main legal reference Article 33 (Notification of a personal data breach to the supervisory authority) Article 34 (Communication of a personal data breach to the data subject) Keywords Hacker attack Personal data breach … DD 126889 FD 142710 Final Decision 1. Facts concerning the data breach - Controller: AWIN AG - Incident: Credential …
17 December 2019
… Main legal reference Article 33 (Notification of a personal data breach to the supervisory authority) Article 34 (Communication of a personal data breach to the data subject) Keywords Hacker attack Personal data breach … users’ sessions to be taken over and part of their profile data being accessed (e.g. posts and comments on fo- rum and …
10 October 2019
… SK Main legal reference Article 15 (Right of access by the data subject) Article 21 (Right to object) Keywords Advertising Data subject rights Right of access Right to object Outcome … REPUBLIC OF CYPRUS OFFICE OF THE COMMISSIONER FOR PERSONAL DATA PROTECTION Our ref. 11.17.001.007.188 10 October 2019 …
13 June 2019
… 17 (Right to erasure (‘right to be forgotten’)) Keywords Data subject rights Right to erasure Outcome No violation … Request The Office of the Commissioner for Personal Data Protection (hereafter “CY SA”) refers to the complaint of … Right to erasure, e-commerce, Exercise of the rights of data subjectsSummary of the DecisionOrigin of the case The …
2 May 2025
… for Commander-in-Chief of the Polish Police for disclosing data of a citizen at a press conference 2 May 2025 Poland … means, ended up in the hospital, where police officers soon appeared. The media named the woman and the … of the Police, as the public authority, competent for the protection of human security and the maintenance of public …
13 January 2021
… 13 January 2021 Poland The President of the Personal Data Protection Office (UODO) imposed a fine of PLN 1.9 million … measures to ensure the security of the processed data. UODO stated that the company infringed the principles … The President of the Personal Data Protection Office (UODO) imposed a fine of PLN 1.9 …
5 May 2022
… and fine imposed Key words: special categories of personal data, unauthorised access Summary of the Decision Origin … public access, which they should have been. The executive officer failed to notice this, and the document passed … is a violation of Article 32 (1) (b) of the General Data Protection Regulation, which requires implementation of a …