Search results | European Data Protection Board

Polish SA: Not just negative consequences, but the risk of their occurrence as a reason for breach notification
3 March 2022
News
… data subject (Article 34(1)) Decision: Infringement of the GDPR, administrative fine Key words: information … data subject (Article 34(1)) Decision: Infringement of the GDPR, administrative fine Key words: information …
Spanish SA imposes a fine on Vodafone España, for a loss of confidentiality related to mobile phone sim card duplicate and a lack of accountability
31 March 2022
News
… of accountability by not having implemented an effective GDPR compliance and management model to avoid the risk of … of accountability by not having implemented an effective GDPR compliance and management model to avoid the risk of …
Romanian Supervisory Authority's fine of 9,544.40 lei (EUR 2,000) against Telekom Romania Mobile Communications SA
25 November 2019
News
… provided by Article 5 paragraph (1) letter d) of the GDPR. Thus, according to Article 5 paragraph (1) letter d) … provided by Article 5 paragraph (1) letter d) of the GDPR. Thus, according to Article 5 paragraph (1) letter d) …
Decision concerning a complaint directed against Meta Platforms Ireland Limited in respect of the Facebook service made pursuant to Section 113 of the Data Protection Act 2018 (Inquiry 18-5-5)
12 January 2023
Decision by the SA
… Platforms Ireland Limited and its Facebook service (Art. 65 GDPR) … Decision concerning a complaint directed against …
Norwegian DPA: Dragefossen AS fined
13 May 2021
News
… contravened Article 6(1) and Article 5(1)(a) of the GDPR. In its decision, the Data Protection Authority has … contravened Article 6(1) and Article 5(1)(a) of the GDPR. In its decision, the Data Protection Authority has …
Fine proposed for Danish recruitment company
15 May 2020
News
… requirements of the General Data Protection Regulation (GDPR) that personal data must be processed lawfully, fairly … requirements of the General Data Protection Regulation (GDPR) that personal data must be processed lawfully, fairly …
Dutch SA fines Booking.com for delay in reporting data breach
10 December 2020
News
… authority, article 33 (1) Decision: Infringement of the GDPR, administrative fine Key words: Data breach, delayed … authority, article 33 (1) Decision: Infringement of the GDPR, administrative fine Key words: Data breach, delayed …
Enforcement notice in the matter of Meta Platforms Ireland Limited made pursuant to Sections 133(9) and 133(10) of the Data Protection Act, 2018 and Articles 60 and 66 of the General Data Protection Regulation
7 December 2023
Urgent Binding decision of the Board (Art. 66)
… measures regarding Meta Platforms Ireland Ltd (Art. 66(2) GDPR) … Enforcement notice in the matter of Meta Platforms …
March Plenary - adopted documents
21 March 2022
News
… Guidelines 02/2022 on the application of Article 60 GDPR 14 March 2022 Publication Type: Guidelines Topics: …
Data Pro Code
20 August 2020
Decision by the SA
… Netherlands Type Code for Controllers/Processors subject to GDPR Scope National Opinion/Guideline References Guidelines …
Code of Conduct regulating the processing of personal data in clinical trials and other clinical research and pharmacovigilance activities (English and Spanish versions)
10 February 2022
Decision by the SA
… Spain Type Code for Controllers/Processors subject to GDPR Scope National Monitoring Body Internal Code of Conduct …
EuroPriSe
… processing operations by processors in accordance with the GDPR using the EuroPriSe method Type of criteria National …
Administrative fine imposed on the Finnish Motor Insurers’ Centre for the collection of unnecessary patient information
8 February 2022
News
… for claims handling. This practice has violated the GDPR. The Data Protection Ombudsman notes that the Traffic … for claims handling. This practice has violated the GDPR. The Data Protection Ombudsman notes that the Traffic …
EDPB adopts reply to LIBE on the 2nd Additional Protocol to the Cybercrime Convention, Guidelines on Codes of Conduct as a tool for international transfers, letter on AI liability and designates representatives to ENISA’s SCCG
24 February 2022
News
… clarify the application of articles 40 (3) and 46 (2) (e) GDPR. These provisions stipulate that, once approved by a … clarify the application of articles 40 (3) and 46 (2) (e) GDPR. These provisions stipulate that, once approved by a …
The Swedish Data Protection Authority issues fine against the National Government Service Centre
30 April 2020
News
… The documentation of the breach, as required under the GDPR, was also found incomplete with regards to the NGSC’s … The documentation of the breach, as required under the GDPR, was also found incomplete with regards to the NGSC’s …
Polish SA: administrative fine of € 24.000 for failure to notify a personal data breach
14 March 2024
News
… administrative fine, on the basis of on Article 83 (2) (a) GDPR, taking into account aggravating circumstances such as: … administrative fine, on the basis of on Article 83 (2) (a) GDPR, taking into account aggravating circumstances such as: …
Decision in the matter of WhatsApp Ireland Limited made pursuant to Section 111 of the Data Protection Act 2018
20 August 2021
Decision by the SA
… Authority regarding WhatsApp Ireland under Article 65(1)(a) GDPR … Decision in the matter of WhatsApp Ireland Limited …
Unlawful use of body cams in Stockholm’s public transport
21 June 2021
News
… who operate the public transport in Stockholm, has violated GDPR when equipping ticket inspectors with body cameras that … who operate the public transport in Stockholm, has violated GDPR when equipping ticket inspectors with body cameras that …
Fines proposed for two municipalities
10 March 2020
News
… of security under the General Data Protection Regulation (GDPR). For the municipalities of Gladsaxe and Hørsholm … of security under the General Data Protection Regulation (GDPR). For the municipalities of Gladsaxe and Hørsholm …
Italian DPA: The Italian SA issues a warning to the Campania Region
26 May 2021
News
… the system was in breach of basic principles of the EU GDPR such as lawfulness, fairness, transparency, and privacy … the system was in breach of basic principles of the EU GDPR such as lawfulness, fairness, transparency, and privacy …