22 November 2021
… data subject (Article 34(1)) Decision: Infringement of the GDPR, fine imposed, order to comply Key words: Obligation to … — it did not meet the requirements set out in the GDPR. Key Finding In the course of the case, it turned out … by the breach in the manner set out in Art. 34(2) of the GDPR. For further information: …
1 February 2021
… and fathers-to-be in Belgium, for various breaches of the GDPR. Family Service is a marketing company that … of 50,000 euro, and ordered the company to comply with the GDPR. Given the size of the company, this is a considerable … model of Family Service is clearly not compliant with the GDPR. To read the decision (in Dutch) click here . For …
16 September 2021
… “Luigi Bocconi” University in Milan Legal Reference: GDPR: Article 5 para. 1, letters a), c) and e) (lawfulness, … category data) Decision: Finding of infringements of GDPR; imposition of administrative fine and corrective … data without a lawful legal basis pursuant to Article 9 GDPR. The students’ consent could not be relied upon by the …
7 April 2022
… is also the cornerstone of effective enforcement under the GDPR and effective cooperation among SAs. Furthermore, the … EDPB is concerned about the proposals’ alignment with the GDPR and strict CJEU case law. In particular, the EDPB … free from external influence” in accordance with Art. 52(2) GDPR. In addition, the EDPB states that the legislative …
13 July 2020
… breach or mitigate its adverse effects (Art. 33 (3) (d) GDPR) The company hired a forensics firm to identify network … or public com- munication (Art. 34 (1) or Art. 34 (3) (c) GDPR) The concerned data subjects were informed of the … incident occurred, e.g. encryption (Arti- cle 34 (3) (a) GDPR) - 3 - The stolen passwords were hashed with PBKDF2-SHA …
21 April 2020
… of data subject rights. The guidelines state that the GDPR contains several provisions for the processing of … to consent and to the respective national legislations. The GDPR foresees the possibility to process certain special … hope to produce results as quickly as possible. The GDPR does not stand in the way of scientific research, but …
28 October 2021
… Trasporto Passeggeri Emilia Romagna S.p.A. Legal Reference: GDPR: Article 5 (Principles applying to personal data … remote surveillance) Decision: Finding of infringements of GDPR and Italian law, imposition of administrative fine Key … out in this respect by national law pursuant to Article 88 GDPR – namely, either an ad-hoc agreement with trade unions …
26 January 2023
… Legal references: The right of access to data (Art. 15 of GDPR) Decision: The complaint was upheld Summary of the … processed in accordance with the procedure laid down in the GDPR, and during the conversations requested, only those … to be an improper implementation of Article 15(3) of the GDPR. For further information: Išnagrinėjus skundą …
11 May 2020
… of Article 56.1 of the General Data Protection Regulation (GDPR). lodged a complaint with the CNIL regarding the … in accordance with the provisions of Article 58.2.b) of the GDPR. Indeed, has to ensure and be able to demonstrate that … manner in relation to them (Articles 5.1.a) and 5.2 GDPR). In addition, pursuant to Articles 17.1 and 21.1 GDPR, …
3 December 2024
… como Sello Europeo de Protección de Datos. La certificación GDPR ayuda a las organizaciones a demostrar su cumplimiento … los editores: * La transferencia debe cumplir con el Art.6 GDPR y las disposiciones del Capítulo V. Un acuerdo … como Sello Europeo de Protección de Datos. La certificación GDPR ayuda a las organizaciones a demostrar su cumplimiento …
25 March 2019
… 4x35 for a total of DKK 1. 2 million for a breach of the GDPR. Taxa 4x35 could be fined for failure to delete … Agency proposes a fine in accordance with the rules of the GDPR. 8.873.333 taxi trips In the autumn of 2018, the Danish … only because the company’s system makes compliance with the GDPR burdensome. “We have opted for a fine in this case. …
22 June 2021
… for violation of the General Data Protection Regulation (GDPR). This case concerns insufficient risk assessment and … that the bank did not meet the requirements of the GDPR for risk assessment and appropriate technical measures … risk assessment and testing as required by the law. The GDPR requires that the data controller carry out risk …
18 December 2019
… rights. The European General Data Protection Regulation (GDPR) gives us the opportunity to decisively punish … procedure to be in breach of Article 32 of the GDPR which obliges the company to take appropriate technical … comply with its legal requirement under Article 37 of the GDPR to appoint an internal data protection officer. When …
… particular the record-keeping obligation under Art. 30(5) GDPR Statement 2/2025 on the implementation of the PNR … down additional procedural rules for the enforcement of the GDPR Statement 3/2024 on data protection authorities’ role … for clarifications on the consistent application of the GDPR, focusing on health research Letter to the Council of …
… Processing of Personal Data pursuant to Art. 42 GDPR (‘GDPR – information privacy standard’), Version 0.9.7 Opinion … IT-supported processing of Personal Data pursuant to art 42 GDPR (‘GDPR – information privacy standard’)” presented 2 …
3 November 2021
… of processing (Article 32) Decision: Infringement of the GDPR, Order to comply Key words: Loss of … a violation of Article 5.1.f) and Article 32 of the GDPR, for which the telephone company is responsible. The … of processing (Article 32) Decision: Infringement of the GDPR, Order to comply Key words: Loss of …
1 December 2019
… been made. This is, however, mandatory under Art. 37 (7) GDPR. Violations of this requirement are subject to a fine in accordance with Art. 83 Para. 4 lit. a) GDPR. The fine may sound low at first sight. However, … been made. This is, however, mandatory under Art. 37 (7) GDPR. Violations of this requirement are subject to a fine …
2 September 2020
… the processing of personal data to the provisions of the GDPR by discontinuing making available on the GEOPORTAL2 … with them. In accordance with Article 5(1)(a) of the GDPR, personal data must be processed lawfully, fairly and … where at least one of the conditions indicated in Art. 6 GDPR is met. In the course of the proceedings, GGK did not …
28 July 2020
… interplay of the Second Payment Services Directive and the GDPR - version for public consultation letter to MEP Ďuriš … interplay of the Second Payment Services Directive and the GDPR - version for public consultation letter to MEP Ďuriš …
5 November 2024
… the Irish Data Protection Authority under Art. 64 (2) GDPR. EDPB Chair Anu Talus said: “During the stakeholder … the Irish Data Protection Authority under Art. 64 (2) GDPR. EDPB Chair Anu Talus said: “During the stakeholder …