Search results | European Data Protection Board

EDPB & EDPS call for ban on use of AI for automated recognition of human features in publicly accessible spaces, and some other uses of AI that can lead to unfair discrimination
21 June 2021
News
… clarify that existing EU data protection legislation (GDPR, the EUDPR and the LED) applies to any processing of … protection authorities (DPAs) are already enforcing the GDPR and the LED on AI systems involving personal data, in … clarify that existing EU data protection legislation (GDPR, the EUDPR and the LED) applies to any processing of …
German Authorisation for the use of an Administrative Arrangement between EEA and non-EEA Financial Supervisory Authorities
24 April 2019
Decision by the SA
… of an Administrative Arrangement pursuant to Article 46.3.b GDPR 157KB German English Download Opinion / Binding …
STATKRAFT GROUP
23 May 2025
… of the Statkraft Group Decision SA 136.4KB Download Pre-GDPR No … STATKRAFT GROUP …
EDPB adopts final version of Guidelines on data subject rights - right of access
17 April 2023
News
… aligns the text of the Guidelines with the text of the GDPR, which does not provide for one-stop-shop for … aligns the text of the Guidelines with the text of the GDPR, which does not provide for one-stop-shop for …
Comcast Corporation Group
23 November 2023
… 742.4KB Download Pre-GDPR No … Comcast Corporation Group …
Cerner
15 February 2024
… Cerner Group Cerner decision 383.3KB English Download Pre-GDPR No … Cerner …
Cerner
15 February 2024
… the Cerner Group Cerner BCR-P 390.3KB English Download Pre-GDPR No … Cerner …
Infosys Group
2 December 2024
… of the Infosys Group National Decision 402.5KB Download Pre-GDPR No … Infosys Group …
Infosys Group
2 December 2024
… of the Infosys Group National Decision 339.2KB Download Pre-GDPR No … Infosys Group …
Worldline Group
27 May 2025
… Group Decision (EN) 251.9KB English French Download Pre-GDPR No … Worldline Group …
Polish SA: administrative fine of 210 € for failure to notify personal data breach to supervisory authority
28 November 2024
News
… Office then explained the procedure resulting from the GDPR. In the case of such an incident, the risk to which the … a fine of 210 € for infringement of Article 33 of the GDPR. For further information: Decision in national … Office then explained the procedure resulting from the GDPR. In the case of such an incident, the risk to which the …
July Plenaries - adopted documents
2 August 2022
News
… Ireland Limited (Meta IE)). In accordance with Art. 65 (5) GDPR, the EDPB will publish its decision on its website … Ireland Limited (Meta IE)). In accordance with Art. 65 (5) GDPR, the EDPB will publish its decision on its website …
January 18th & February 1st plenary sessions - adopted documents
8 February 2022
News
… of the Luxembourg Supervisory Authority regarding the GDPR – CARPA certification criteria 8 February 2022 …
Processing the personal data by a processor must be documented
20 December 2022
News
… that the processing of personal data complies with the GDPR. Key Findings Failure to verify the processor and its … that the processing of personal data complies with the GDPR. Key Findings Failure to verify the processor and its …
Polish SA: risk assessment and acting in accordance with established procedures counteract data loss
20 December 2022
News
… documentation since the beginning of the application of the GDPR and had performed a risk assessment. The controller was … documentation since the beginning of the application of the GDPR and had performed a risk assessment. The controller was …
Finnish SA: Administrative fine imposed on psychotherapy provider for shortcomings in fulfilling the client's right of access to data
4 September 2023
News
… the client's right of access to data as required by the GDPR. In the decision, particular attention was paid to the … the client's right of access to data as required by the GDPR. In the decision, particular attention was paid to the …
Biometrics for attendance recording. The Italian SA fines a high school
15 July 2025
News
… Findings The Italian SA recalled that, according to the GDPR and the Italian Data Protection Code, the use of … Findings The Italian SA recalled that, according to the GDPR and the Italian Data Protection Code, the use of …
Norwegian DPA: Waxing Palace AS fined
28 October 2021
News
… to be in breach of the General Data Protection Regulation (GDPR). The fine amount is based on an overall assessment, … to be in breach of the General Data Protection Regulation (GDPR). The fine amount is based on an overall assessment, …
General Court: WhatsApp annulment action inadmissible
7 December 2022
News
… a draft decision of the Irish DPA concerning WhatsApp IE’s GDPR transparency obligations to both users and non-users of … a draft decision of the Irish DPA concerning WhatsApp IE’s GDPR transparency obligations to both users and non-users of …
Norwegian DPA: Company fined for illegal forwarding of e-mail
13 May 2021
News
… in addition to the requirement for legal basis under the GDPR. Nor had the business drawn up procedures for access to … in addition to the requirement for legal basis under the GDPR. Nor had the business drawn up procedures for access to …