Search results | European Data Protection Board

Loss of a document with personal data and failure to notify the incident as a reason for a fine
6 July 2022
News
… Loss of a document with personal data and failure to notify the incident as a reason for a … z o.o. Sp. k. Legal Reference: notification of a personal data breach to the supervisory authority (Art. 33 (1)) Decision: …
Romanian SA fines UiPath SRL for breaching Articles 25 and 32 GDPR
18 July 2023
News
… Romanian SA fines UiPath SRL for breaching Articles 25 and 32 GDPR 18 July 2023 Romania … Controller: UiPath SRL Legal references: Article 25 (Data protection by design and by default), Article 32 … Decision: Administrative fine, Compliance order Key words: Data protection by design and by default, Personal data …
Norwegian DPA issues reprimand to Telenor for inadequate protection of personal data
12 February 2021
News
… reprimand to Telenor for inadequate protection of personal data 12 February 2021 Norway The Norwegian Data Protection Authority have issued a reprimand to Telenor … in its voicemail function, and for failing to submit a data breach notification to the Norwegian Data Protection …
Administrative fine imposed on psychotherapy centre Vastaamo for data protection violations
5 January 2022
News
… fine imposed on psychotherapy centre Vastaamo for data protection violations 5 January 2022 Finland Background … Vastaamo Legal Reference: Notification of a personal data breach to the supervisory authority (Art. 33(1)), …
EDPB adopts final version of Guidelines on data subject rights - right of access
17 April 2023
News
… EDPB adopts final version of Guidelines on data subject rights - right of access 17 April 2023 EDPB … the EDPB has adopted a final version of the Guidelines on data subject rights - Right of access . The Guidelines … lead supervisory authority and the Guidelines on data breach notification . Both guidelines concern an update of …
EDPB response to TikTok letter on confidentiality breach
2 February 2021
Letters
… EDPB response to TikTok letter on confidentiality breach 2 February 2021 Letters EDPB … Madeline Moncrieff … the matter of a letter of 13 August 2020 from the Irish Data Protection Commissioner (the “IE SA”) to TikTok, which … GDPR. The EDPB’s tasks do not include substituting national data supervisory authorities conducting investigations. …
Polish DPA fines P4 company PLN 100,000
8 June 2021
News
… fines P4 company PLN 100,000 8 June 2021 Poland The Polish Data Protection Authority has imposed an administrative fine … authority within 24 hours after having detected a personal data breach. The reason for the administrative fine is that the …
Long cooperation between controller and processor does not guarantee data security – an administrative fine imposed by the Polish SA
8 February 2023
News
… between controller and processor does not guarantee data security – an administrative fine imposed by the Polish … and (2) GDPR (Principles relating to processing of personal data), Article 24 (1) GDPR (Responsibility of the … words: Data security, Administrative fine, Personal data breach Summary of the Decision Origin of the case The …
Polish SA: risk assessment and acting in accordance with established procedures counteract data loss
20 December 2022
News
… acting in accordance with established procedures counteract data loss 20 December 2022 Poland Background information … case Controller: Mayor of the Commune Legal Reference: Data protection by design and by default Article 25(1) … to the Polish Supervisory Authority, SA a personal data breach which occurred as a result of a break-in in the …
Polish DPA: The controller should carry out a fair risk analysis
21 June 2021
News
… out a fair risk analysis 21 June 2021 Poland The Polish Data Protection Authority has imposed an administrative fine … PLN 160 000 (EUR 35 000) for failing to notify a personal data protection breach. In addition, the company was fined for failing to …
Swedish SA: Administrative fine against bank for transferring customer data to Meta
2 September 2024
News
… Administrative fine against bank for transferring customer data to Meta 2 September 2024 Sweden Background information … Article 5 (Principles relating to processing of personal data), Article 32 (Security of processing), Article 83 … Administrative fine Key words: Finance, Personal data breach, Administrative fine Summary of the Decision …
Polish DPA: The first fine for non-compliance with an administrative decision order
12 February 2021
News
… imposed on it in an administrative decision. The Personal Data Protection Office (UODO) ordered the entrepreneur to communicate the breach of their personal data to its patients and to provide these persons with …
Decision in the matter of Twitter International Company made pursuant to Section 111 of the Data Protection Act 2018
9 December 2020
Decision by the SA
… International Company made pursuant to Section 111 of the Data Protection Act 2018 Decision Type SA Ireland 9 December 2020 Fines Cybersecurity and data breach IE Final Decision 2MB Download Opinion / Binding …
Finnish SA: Police reprimanded for illegal processing of personal data with facial recognition software
7 October 2021
News
… SA: Police reprimanded for illegal processing of personal data with facial recognition software 7 October 2021 Finland … Reference: Art. 14 in the Act on the Processing of Personal Data in Criminal Matters and in Connection with Maintaining … Security Decision: Reprimand Key words: Personal data breach Summary of the Decision Origin of the case The Deputy …
University failed to sufficiently protect sensitive personal data
11 December 2020
News
… University failed to sufficiently protect sensitive personal data 11 December 2020 Sweden Umeå University has processed special categories of personal data concerning sexual life and health through, amongst … for failing to report the incident as a personal data breach. Since 25 May 2018, organisations are obliged to …
Polish SA fines controller EUR 2200 for failure to implement appropriate security measures
9 June 2023
News
… Article 5 (Principles relating to processing of personal data), Article 24 (Responsibility of the controller), Article 25 (Data protection by design and by default), Article 32 … by design and by default, Data security, Personal data breach, Responsibility of the controller, Principles …
Reprimand for disclosure of the list of quarantined persons
25 November 2020
News
… 25 November 2020 Poland The President of the Personal Data Protection Office, after having conducted ex officio proceedings relating to breach of personal data protection of persons subject to medical quarantine by …
Hellenic SA fines Debt Management Company for unlawful processing of personal data and non-essential examination of rights to object and erasure
12 September 2022
News
… Debt Management Company for unlawful processing of personal data and non-essential examination of rights to object and … fairness and transparency of processing of personal data (Article 5.1a). Principle of accountability (Article … unduly impeded the exercise of the complainant’s rights, in breach of the provision of Article 12(2) of the GDPR, and …
Online clairvoyance reading: French SA fined KG COM EUR 150,000
8 June 2023
News
… 5 (1)(e)(Principles relating to processing of personal data), Article 6 (Lawfulness of processing), Article 9 (Processing of special categories of personal data), Article 32 (Security of processing), Article 33 (Notification of a personal data breach to the supervisory authority) Decision: …
The Polish SA imposed an administrative fine on the University Clinical Center of the Medical University of Warsaw
8 September 2022
News
… of Warsaw Legal Reference: Notification of a personal data breach to the supervisory authority (Article 33(1)), Communication of a personal data breach to the data subject (Article 34(1)) Decision: …

First page
Previous page
…
2
3
4
5
6
7
8
9
10
…
Next page
Last page