20 September 2022
… delivering the information notice as per Articles 13 and 14 GDPR; the right of access to one’s personal data and the … rights which are set forth in separate provisions of the GDPR and are intended to afford safeguards and protection in … delivering the information notice as per Articles 13 and 14 GDPR; the right of access to one’s personal data and the …
27 January 2023
… that the company did not have the consent required by the GDPR for processing data on body mass indices and maximal … The consent requested did not meet the requirements of the GDPR as it was not specific and informed. The SA finds that … that the company did not have the consent required by the GDPR for processing data on body mass indices and maximal …
2 May 2024
… HELLENIC POST SERVICES S.A. Decision: Infringement of the GDPR, administrative fine Key words: non-compliance with … Hellenic Supervisory Authority (SA), in accordance with the GDPR. The first incident involves a breach of data … HELLENIC POST SERVICES S.A. Decision: Infringement of the GDPR, administrative fine Key words: non-compliance with …
12 March 2026
… data should always be based on a legal basis under the GDPR. “Europe’s ambition to lead in medical innovation must … legal basis for clinical trials, which will facilitate GDPR compliance and strengthen consistency across the Union. … Wiewiórowski Topics: EU Legislative proposal and strategy GDPR Health Artificial intelligence Legal basis Controller …
16 May 2022
… processing - article 32(1). Decision: infringement of the GDPR, administrative fine, order subject to a financial … infringements of the General Data Protection Regulation (GDPR) in its visa-issuing process. In addition to imposing a … processing - article 32(1). Decision: infringement of the GDPR, administrative fine, order subject to a financial …
5 March 2025
… the right to erasure or the “right to be forgotten” (Art.17 GDPR). The Board selected this topic during its October 2024 plenary as it is one of the most frequently exercised GDPR rights and one about which DPAs frequently receive … enforcement action on the right to erasure IT DPA: GDPR, il Garante italiano partecipa al CEF 2025 sul diritto …
17 July 2024
… Protection Seals serve as important tools contributing to GDPR compliance. In September 2022, the EDPB had adopted an … the whole EU/EEA, and as a European Data Protection Seal. GDPR certification contributes to the demonstration of … and data protection seals in accordance with Article 42(8) GDPR. The opinion on the approval of the EuroPriSe …
24 February 2022
… to data subjects under Article 12(1) and Article 13 of the GDPR; data minimisation under Article 5(1)(c); legal basis … under Article 6(1) Decision: finding an infringement of the GDPR, order to bring practices into line with the GDPR, data protection fine of HUF 5 million (approx. EUR 14 …
5 November 2024
… the Irish Data Protection Authority under Art. 64 (2) GDPR. EDPB Chair Anu Talus said: “During the stakeholder … the Irish Data Protection Authority under Art. 64 (2) GDPR. EDPB Chair Anu Talus said: “During the stakeholder …
10 March 2025
… from accessing the data in the loan applications (art. 32 GDPR, art. 25 GDPR and art. 5(1)(f)). Due to poor data security, the … from accessing the data in the loan applications (art. 32 GDPR, art. 25 GDPR and art. 5(1)(f)). Due to poor data security, the …
7 May 2025
… fine of 60 000 € for infringement of Article 38(3) of the GDPR and a fine of 72 000 € for infringement of Articles 30(1), 35(1,7) of the GDPR. Total amount of imposed fine on Toyota Bank Polska … fine of 60 000 € for infringement of Article 38(3) of the GDPR and a fine of 72 000 € for infringement of Articles …
25 September 2025
… fine for an infringement of Article 58 (1)(a) and (e) GDPR. The entrepreneur was informed of the opening of the … fine of EUR 4 500 for infringement of Article 58 (1)(a,e) GDPR. For further information: • National press release: … fine for an infringement of Article 58 (1)(a) and (e) GDPR. The entrepreneur was informed of the opening of the …
20 January 2023
… Legal Reference: Lawfulness of processing (Article 6(1) GDPR) Decision: Precept, Order to … without consent in accordance with Article 6(1)(a) of the GDPR. Estonian SA issued a precept with a penalty payment of … Legal Reference: Lawfulness of processing (Article 6(1) GDPR) Decision: Precept, Order to …
16 May 2022
… - article 35(2) icw 38(1) Decision: infringement of the GDPR, administrative fines Key words: illegally processing … violations of the General Data Protection Regulation (GDPR). For example, the Tax Administration had no statutory … - article 35(2) icw 38(1) Decision: infringement of the GDPR, administrative fines Key words: illegally processing …
28 January 2025
… share and login-in you leave behind a digital trail. The GDPR ensures that your data can only be used in ways you … share and login-in you leave behind a digital trail. The GDPR ensures that your data can only be used in ways you …
3 February 2022
… of processing (Article 6). Decision: Infringement of the GDPR, order to comply. Key words: … operations into compliance with the provisions of the GDPR within six months of this decision. For further … of processing (Article 6). Decision: Infringement of the GDPR, order to comply. Key words: …
10 March 2021
… national authorities responsible for enforcement of the GDPR should be entrusted with the oversight of the privacy … the current ePrivacy Directive, and should complement the GDPR by providing additional strong guarantees for … national authorities responsible for enforcement of the GDPR should be entrusted with the oversight of the privacy …
1 July 2021
… established by the General Data Protection Regulation (GDPR). Furthermore, the enterprise had failed to fulfil its duty to provide information (Article 13 of the GDPR), its duty to delete the contents of the complainant’s … established by the General Data Protection Regulation (GDPR). Furthermore, the enterprise had failed to fulfil its …
28 July 2020
… interplay of the Second Payment Services Directive and the GDPR - version for public consultation letter to MEP Ďuriš … interplay of the Second Payment Services Directive and the GDPR - version for public consultation letter to MEP Ďuriš …
11 November 2020
… In doing so, the EDPB seeks a consistent application of the GDPR and the Court’s ruling across the EEA. EDPB Chair, … to the decisions they take on that basis, in line with the GDPR principle of accountability. Moreover, data exporters … as not impinging on the commitments of the Article 46 GDPR transfer tool the data exporter and importer rely on. …