11 July 2019
… a. Privacy Policy, 15 sheets, b. Compliance with the GDPR — FAQ, 5 sheets; 15. Supplemental statement of the … party failed to comply with Articles 5(2) and 24(1) GDPR, which was interpreted as the obligation to take into … to properly show compliance with Articles 5(2) and 24(1) GDPR was provided. The last objection was partially …
3 August 2019
… of Article 5 of the General Data Protection Regulation (‘GDPR’) requires that the personal data processed by … controller did not comply with its obligations under the GDPR as it did not take sufficient action to assure itself …
14 March 2019
… - Eighth Plenary session: Interplay ePrivacy Directive and GDPR, statement on ePrivacy Regulation, DPIA Lists ES & IS, … topics were discussed. Interplay ePrivacy Directive and GDPR The EDPB adopted its opinion on the interplay between … of personal data triggers the material scope of both the GDPR and the ePrivacy Directive, limits the competences, …
26 April 2024
… of Kópavogur infringed multiple Articles of the GDPR with its use of Google’s educational system i.e.: … accordance with the Regulation (Articles 5, 24(1) & 28(1) GDPR) Data processing agreement did not meet the minimum requirements (Article 28(3)(a) GDPR) Failure to demonstrate a specified, explicit, and …
28 March 2022
… Foreign languages private school Legal Reference: GDPR: Article 5(1)(a): Principle of lawfulness, fairness and … Article 21: Right to object Decision: Infringement of the GDPR, Administrative fine Key words: Right to object, … the provisions of Articles 5(1)(f)(a), 5(2) and 13 of the GDPR and in any case without clearly specifying the legal …
3 December 2024
… Data Protection Board (EDPB) published guidelines on Art.48 GDPR about data transfers to third country authorities and … it must comply with the General Data Protection Regulation (GDPR). In its guidelines, the EDPB zooms in on Art. 48 GDPR and clarifies how organisations can best assess under …
3 August 2019
… general-data-protection-regulation-gdpr/individual-rights/right-of-access/ In the absence of … controller did not comply with its obligations under the GDPR as it did not take sufficient action to assure itself …
18 January 2024
… case digest on Security of Processing (Art. 32 GDPR) and Data Breach Notification (Art. 33 & 34 GDPR) . Since the entry into force of the GDPR, data protection authorities (DPAs) have closely … case digest on Security of Processing (Art. 32 GDPR) and Data Breach Notification (Art. 33 & 34 GDPR) . …
25 July 2022
… Legal Reference: Data minimisation (Article 5.1.c GDPR), Retention period (Article 5.1.e GDPR), Information of individuals (Article 12 GDPR) Decision: Administrative fine Key words: Geolocation … Legal Reference: Data minimisation (Article 5.1.c GDPR), Retention period (Article 5.1.e GDPR), Information of …
19 June 2020
… answer to the request of the plaintiff (Article 15 GDPR), did not respond within the deadline set by the GDPR (Article 12.3 GDPR) and was not sufficiently transparent (Article 12.1 … answer to the request of the plaintiff (Article 15 GDPR), did not respond within the deadline set by the GDPR …
14 January 2020
… as a controller had complied with the requirements of the GDPR and that its internal policies and regulations provided … had a legal right under Articles 5(1) and 6(1)(f) of the GDPR to carry out an internal investigation searching and … in his corporate PC. Following the finding that the GDPR had been infringed, the Authority decided in this …
26 April 2024
… municipality of Garðabær infringed multiple Articles of the GDPR with its use of Google’s educational system i.e.: … accordance with the Regulation (Articles 5, 24(1) & 28(1) GDPR) Data processing agreement did not meet the minimum requirements (Article 28(3)(a) GDPR) Failure to ensure that data is not further processed …
24 January 2023
… instructed the IE DPA to add an infringement of Art. 6(1) GDPR. Additionally, the EDPB instructed the IE DPA to … of the principle of fairness under Art. 5(1)(a) GDPR. The EDPB further decided that the IE DPA must carry … it processes special categories of personal data (Art. 9 GDPR); whether it processes data for the purposes of …
13 December 2019
… 12 and 13 of the General Data Protection Regulation (GDPR); the infringement of Article 5 paragraph (1) letter c), Article 6 and Article 7 of GDPR; the infringement of Article 5 paragraph (1) letter c), Article 9 and Article 7 of GDPR; the infringement of Article 5 paragraph (1) letters …
23 April 2025
… application of the General Data Protection Regulation (GDPR) across Europe. To support understanding and … across Europe, ensure consistent enforcement of the GDPR, and address emerging challenges, including … The number of consistency opinions adopted under Art. 64(2) GDPR significantly increased. In 2024, the Board adopted …
29 November 2019
… mentioned in Article 83 paragraph (5) letter a) of GDPR – fine in the amount of 2389.05 lei, the equivalent of … mentioned in Article 83 paragraph (5) letter b) of GDPR – reprimand; for the contravention found pursuant to … mentioned in Article 83 paragraph (4) letter a) of GDPR – reprimand. The sanctions were imposed following a …
15 September 2022
… Ireland Limited (Meta IE)) and has issued a record GDPR fine of €405 million. The LSA’s final decision follows … second highest fine since the entry into application of the GDPR - it is also the first EU-wide decision on children’s … EDPB’s binding decision was adopted on the basis of Art. 65 GDPR, after the Irish DPA as lead supervisory authority …
17 January 2025
… protection . EDPB clarifies the use of pseudonymisation for GDPR compliance The GDPR introduces the term ‘pseudonymisation’* and refers to … to use legitimate interests as a legal basis (Art. 6(1)(f) GDPR), as long as all other GDPR requirements are met. … protection . EDPB clarifies the use of pseudonymisation for GDPR compliance The GDPR introduces the term …
26 January 2023
… The principle of accountability (Article 5(2) of the GDPR), lawfulness of processing (Article 6(1) of the GDPR) Summary of the Decision Origin of the case The … of such measures must comply with the requirements of the GDPR. In the light of the principle of accountability …
20 October 2022
… Lawfulness of processing of personal data (article 6 of the GDPR), Rights of individuals (articles 12, 15 and 17 of the GDPR), Cooperation with supervisory authority (article 31 of the GDPR) Decision: Infringement of the GDPR, Administrative … Lawfulness of processing of personal data (article 6 of the GDPR), Rights of individuals (articles 12, 15 and 17 of the …