16 May 2019
… reference Article 6 (Lawfulness of processing) Keywords Data security Lawfulness of processing Personal data breach Outcome No violation Summary 87.7KB Descarga Decision … Decision: No liability of the processor Key words: Data breach, Lawfulness of processing, Security of …
10 September 2025
… Imposition of fines on a telecommunications company and the data processor for personal data breach and insufficient security measures 10 September … Infringement of the GDPR, fines imposed Key words: Data breach, Security of processing, Processor Summary of …
11 July 2019
… Article 5 (Principles relating to processing of personal data) Article 6 (Lawfulness of processing) Keywords Consumer … 1/11 THE OFFICE FOR PERSONAL DATA PROTECTION Pplk. Sochora 27, 170 00 Prague 7, Czech … the above conclusion in itself does not mean that the is in breach of the rules stipulated by Regulation (EU) 2016/679, …
17 March 2022
… on Fortum Marketing and Sales Polska S.A. for personal data breach 17 March 2022 Poland Background information Date of … 5(1)(f)), Responsibility of the controller (Art. 24(1)), Data protection by design and by default (Art. 25(1)), … 5(1)(f)), Responsibility of the controller (Art. 24(1)), Data protection by design and by default (Art. 25(1)), …
15 December 2021
… Pegasus, final version of Guidelines on examples regarding data breach notifications 15 December 2021 EDPB The EDPB and the … (SAs) contributed to the evaluation and review of the Data Protection Law Enforcement Directive (LED) , carried … (SAs) contributed to the evaluation and review of the Data Protection Law Enforcement Directive (LED) , carried …
9 July 2019
… International, Inc more than £99 million under GDPR for data breach 9 July 2019 United Kingdom Statement in response to … Office (ICO) intends to fine it for breaches of data protection law. Following an extensive investigation … Office (ICO) intends to fine it for breaches of data protection law. Following an extensive investigation …
22 April 2021
… Polish DPA: Identifying breaches too late puts customers at risk 22 April 2021 … with a long delay. Because of this negligence the Polish Data Protection Authority imposed a fine on the company in … of over PLN 1.1 million. Lost correspondence with personal data or delivery of such a mail to the wrong recipient - …
8 July 2019
… Intention to fine British Airways £183.39m under GDPR for data breach 8 July 2019 United Kingdom Following an extensive … British Airways £183.39M for infringements of the General Data Protection Regulation (GDPR). The proposed fine relates … British Airways £183.39M for infringements of the General Data Protection Regulation (GDPR). The proposed fine relates …
31 July 2019
… Company fined €150,000 by the Hellenic DPA The Hellenic Data Protection Authority, in response to a complaint, … of the lawfulness of the processing of personal data of the employees of the company ‘PRICEWATERHOUSECOOPERS … to provide consent to the processing of their personal data. The DPA considered that PWC BS as the controller: …
21 February 2022
… for Privacy Protection (IMY) fines Region Uppsala for breaches in its security 21 February 2022 Sweden Background … for Privacy Protection (IMY) has received two personal data breach notifications from Region Uppsala. The data breaches concern sensitive personal data sent without …
3 March 2022
… but the risk of their occurrence as a reason for breach notification 3 March 2022 Poland Background … S.A. Legal Reference: Communication of a personal data breach to the data subject (Article 34(1)) Decision: Infringement of the … S.A. Legal Reference: Communication of a personal data breach to the data subject (Article 34(1)) Decision: …
19 March 2021
… Polish DPA: Breach of the GDPR provisions by Funeda results in a fine 19 … Sp. z o.o. company breached the provisions of the General Data Protection Regulation (GDPR) by not cooperating with Polish Data Protection Authority in the scope of performing the … Sp. z o.o. company breached the provisions of the General Data Protection Regulation (GDPR) by not cooperating with …
3 September 2019
… and modalities for the exercise of the rights of the data subject) Article 13 (Information to be provided where personal data are collected from the data subject) Article 14 (Information to be provided where … and the link to a portal for en- quiries from data subjects are now also integrated as a contact option. …
4 March 2019
… PFroTECQON' l:ClMWJ.5510N'€fi' Information and Data Protection Commissioner vs COMPLAINT Reference is made … with file number CDP/IMI/LSA/4/2019) received from the Data Protection Commission of Ireland concerning ("the … who is alleging tha1 the controller" or "the Bank") breached her data protection rights, as enshrined under the …
28 April 2020
… of processing) Article 15 (Right of access by the data subject) Keywords Consumer protection Right of access … reprimand your company for an infringement of the Gen- eral Data Protection Regulation (GDPR) when processing personal … the mistake of an indi- vidual employee. There has been a breach of Art. 12 (3) (1) GDPR (one- month period). You have …
10 May 2019
… FR Main legal reference Article 15 (Right of access by the data subject) Article 32 (Security of processing) Article 5 (Principles relating to processing of personal data) Article 6 (Lawfulness of processing) Keywords … processing Right of access Third party access to personal data Outcome No violation Summary 61.1KB Descarga Decision …
15 December 2020
… Irish Data Protection Commission announces decision in Twitter inquiry 15 December 2020 Ireland The Data Protection Commission (DPC) has today announced a … commenced in January, 2019 following receipt of a breach notification from Twitter and the DPC has found that …
30 June 2021
… must be notified to the supervisory authority and the data subjects 30 June 2021 Poland Mediation Promotion and … 13 000 PLN (3 000 EUR) for failing to notify the personal data breach to the supervisory authority without undue delay, and … 13 000 PLN (3 000 EUR) for failing to notify the personal data breach to the supervisory authority without undue …
4 September 2020
… Main legal reference Article 33 (Notification of a personal data breach to the supervisory authority) Article 34 (Communication of a personal data breach to the data subject) Keywords Personal data … The Berlin DPA closes the case. 1. Facts concerning the data breach - Controller: Apassionata World GmbH - Incident: …
5 August 2019
… Article 13 (Information to be provided where personal data are collected from the data subject) Keywords Data subject rights Outcome No violation Summary 59.8KB … file number CDP/IMI/LSA/6/2019) received from the Spanish Data Protection Agency (Agencia Espanola de Proteccion de …