10 October 2019
… Information and Data Protection Commissioner Vs COMPLAINT Reference is made to … main establishment as when we asked for the data protection officer, at that time, he/she was not present. INVESTIGATION … Cooperation with the supervisory authority, Exercise of data subjects’ rights, Marketing communicationsSummary of …
25 September 2025
… Article 5 (Principles relating to processing of personal data), Article 24 (Responsibility of the controller), Article 25 (Data protection by design and by default), Article 28 … data subject), Article 38 (Position of the data protection officer) Decision: Administrative fine Key words: …
20 April 2023
… Article 5 (Principles relating to processing of personal data), Article 24 (Responsibility of the controller), Article 25 (Data protection by design and by default), Article 32 (Security … of more than 5 300 EUR (23 580 PLN) on the Disciplinary Officer of the Bar Association for breaching the provisions …
30 June 2021
… Article 13 (Information to be provided where personal data are collected from the data subject) Article 37 (Designation of the data protection officer) Keywords Transparency Right to be informed Data …
4 November 2022
… Article 5 (Principles relating to processing of personal data) Article 6 (Lawfulness of processing) Article 7 (Conditions for consent) Article 38 (Position of the data protection officer) Keywords Lawfulness of processing Consent Data …
11 September 2020
… 11 September 2020 Poland The President of the Personal Data Protection Office, after having found a personal data … UODO stated that in the case concerned the Data Protection Officer (DPO) performed its tasks without having due regard … The President of the Personal Data Protection Office, after having found a personal data …
20 July 2020
… be carried out 20 July 2020 The President of the Personal Data Protection Office (UODO), after having conducted an … protection, and whether GGK has appointed a Data Protection Officer. Unfortunately, due to the lack of access by the … The President of the Personal Data Protection Office (UODO), after having conducted an …
18 December 2019
… 18 December 2019 Germany The Federal Commissioner for Data Protection and Freedom of Information (BfDI) imposed a fine … 37 of the GDPR to appoint an internal data protection officer. When imposing the 10.000 Euro fine, the fact was … The Federal Commissioner for Data Protection and Freedom of Information (BfDI) imposed a …
18 June 2020
… Article 5 (Principles relating to processing of personal data) Article 32 (Security of processing) Article 33 (Notification of a personal data breach to the supervisory authority) Article 34 (Communication of a personal data breach to the data subject) Keywords Data subject …
6 February 2025
… fine of 19 800 € for failure to notify a personal data breach to the supervisory authority 6 February 2025 … personal data breach to the President of the Personal Data Protection Office, nor did he notify the natural person of … must also include the contact of the Data Protection Officer of the National Public Prosecutor's Office, who can …
7 October 2019
… 1/6 Ref No. UOOU-03390/19-7 ORDER The Office for Personal Data Protection, as the competent administrative authority … in the Commercial Register maintained by the the executive officer of which is born DD Month YYYY, residing at Address … Key words: Lawfulness of processing, Legitimate interest, Data subject rightsSummary of the DecisionOrigin of the case …
6 February 2025
… administrative fine of 928 498,06 € for failure to inform data breach victims 6 February 2025 Poland Background … and remedies and be provided with the contact of the Data Protection Officer who could provide more information about the breach. … Reference (s): Article 34 (Communication of a personal data breach to the data subject) Decision: Administrative …
2 February 2022
… Article 5 (Principles relating to processing of personal data) Article 6 (Lawfulness of processing) Article 7 … Article 32 (Security of processing) Article 35 (Data protection impact assessment) Article 37 (Designation of the data protection officer) Keywords Advertising E-Commerce Lawfulness of …
5 May 2022
… and fine imposed Key words: special categories of personal data, unauthorised access Summary of the Decision Origin … public access, which they should have been. The executive officer failed to notice this, and the document passed … is a violation of Article 32 (1) (b) of the General Data Protection Regulation, which requires implementation of a …
12 February 2021
… imposed on it in an administrative decision. The Personal Data Protection Office (UODO) ordered the entrepreneur to … the name and contact details for the data protection officer or other contact point where more information can be … imposed on it in an administrative decision. The Personal Data Protection Office (UODO) ordered the entrepreneur to …
18 January 2023
… He presented the draft adequacy decision for the EU-U.S. Data Privacy Framework to the Board and had an exchange of … In addition, a list of actions already taken by data protection authorities (DPAs) in the field of cloud … will be on the designation and role of the Data Protection Officer (DPO). In addition, the EDPB adopted a report on the …
2 October 2019
… PL Main legal reference Article 15 (Right of access by the data subject) Article 5 (Principles relating to processing of personal data) Keywords Identity verification Legal age Right of … complainant filed a complaint against ith the Austrian data protection authority ("ÖDSB") regarding the roof of …
2 September 2024
… and modalities for the exercise of the rights of the data subject), Article 15 (Right to access by the data … specifically asked his demand to be transferred to the Data Protection Officer (DPO). However, despite the fact that his request … and modalities for the exercise of the rights of the data subject), Article 15 (Right to access by the data …
16 October 2018
… operations which are subject to the requirement for a Data Protection Impact Assessment under Article 35(4) of the General Data Protection Regulation (EU) 2016/679 (GDPR) Decision … HELLENIC DATA PROTECTION AUTHORITY Athens, 16-10-2018 Ref.: … operations which are subject to the requirement for a Data Protection Impact Assessment under Article 35(4) of the …
10 June 2022
… confidentiality); Art. 13 and 14 (Information); Art. 25 (Data protection by design and by default); Art. 28 (Processor); … given in this respect by the Hospital’s Data Protection Officer (DPO). The whistle-blowing service provider had not … confidentiality); Art. 13 and 14 (Information); Art. 25 (Data protection by design and by default); Art. 28 …