10 October 2019
… SK Main legal reference Article 15 (Right of access by the data subject) Article 17 (Right to erasure (‘right to be … Article 21 (Right to object) Keywords Advertising Data subject rights Right to erasure Right to object Outcome … REPUBLIC OF CYPRUS OFFICE OF THE COMMISSIONER FOR PERSONAL DATA PROTECTION Our ref. 11.17.001.006.052 10 October 2019 …
10 October 2019
… SK Main legal reference Article 15 (Right of access by the data subject) Article 21 (Right to object) Keywords Advertising Data subject rights Right of access Right to object Outcome … REPUBLIC OF CYPRUS OFFICE OF THE COMMISSIONER FOR PERSONAL DATA PROTECTION Our ref. 11.17.001.007.188 10 October 2019 …
2 February 2022
… Article 5 (Principles relating to processing of personal data) Article 6 (Lawfulness of processing) Article 7 … Article 32 (Security of processing) Article 35 (Data protection impact assessment) Article 37 (Designation of the data protection officer) Keywords Advertising E-Commerce Lawfulness of …
3 January 2024
… 2023 Cross-border case Hungarian National Authority for Data Protection and Freedom of Information (Hungarian Supervisory Authority, SA) and CSAs: Office for Personal Data Protection of the Slovak Republic (Slovak Supervisory … 2023 Cross-border case Hungarian National Authority for Data Protection and Freedom of Information (Hungarian …
5 January 2021
… based in Warsaw, which, as the controller of personal data, did not meet the obligation of cooperation with the … is closely related to obtaining and processing of personal data. The personal data protection regulations and the obligations they impose on … based in Warsaw, which, as the controller of personal data, did not meet the obligation of cooperation with the …
5 August 2020
… Main legal reference Article 33 (Notification of a personal data breach to the supervisory authority) Article 34 (Communication of a personal data breach to the data subject) Keywords Hacker attack Personal data breach … DD 126889 FD 142710 Final Decision 1. Facts concerning the data breach - Controller: AWIN AG - Incident: Credential …
17 December 2019
… Main legal reference Article 33 (Notification of a personal data breach to the supervisory authority) Article 34 (Communication of a personal data breach to the data subject) Keywords Hacker attack Personal data breach … users’ sessions to be taken over and part of their profile data being accessed (e.g. posts and comments on fo- rum and …
13 June 2019
… 17 (Right to erasure (‘right to be forgotten’)) Keywords Data subject rights Right to erasure Outcome No violation … Request The Office of the Commissioner for Personal Data Protection (hereafter “CY SA”) refers to the complaint of … Right to erasure, e-commerce, Exercise of the rights of data subjectsSummary of the DecisionOrigin of the case The …
26 July 2019
… operations which are subject to the requirement for a Data Protection Impact Assessment under Article 35(4) of the General Data Protection Regulation (EU) 2016/679 (GDPR) Decision … 1 The list of types of personal data processing operations, for which carrying out a Data …
19 February 2020
… and modalities for the exercise of the rights of the data subject) Article 17 (Right to erasure (‘right to be … to your company regarding a violation of the General Data Protection Regulation (GDPR) when processing personal data … to have his player account deleted from the controller database of the online game he had previously bought. The …
29 June 2020
… to erasure (‘right to be forgotten’)) Keywords Consumer protection Outcome Reprimand Summary 62.2KB Descarga … Hatóság (Hungarian National Authority for Data Protection and Freedom of Information, hereinafter: the … complainant. As a result of an administrative error, the data controller failed to inform the complainant about the …
13 January 2021
… threat and remove it led the company ID Finance Poland to data loss. Therefore, the President of the Personal Data Protection Office (UODO) found that the company had not … threat and remove it led the company ID Finance Poland to data loss. Therefore, the President of the Personal Data …
13 December 2019
… of provisions of Articles 12 and 13 of the General Data Protection Regulation (GDPR); the infringement of Article 5 … it provided clear, complete and correct information to the data subjects; fine in the amount of 23893 lei, the … of provisions of Articles 12 and 13 of the General Data Protection Regulation (GDPR); the infringement of …
12 September 2019
… of processing operations exempt from the requirement for a Data Protection Impact Assessment under Art 35(5) of the General Data Protection Regulation (EU) 2016/679 (GDPR) Decision … the list of the kind of processing operations for which a data protection impact assessment is not required The …
2 September 2020
… of a Reprimand for the Processing of Students’ Personal Data 2 September 2020 Poland The President of the Personal Data Protection Office (UODO) imposed a penalty of a reprimand … The President of the Personal Data Protection Office (UODO) imposed a penalty of a …
15 October 2018
… operations which are subject to the requirement for a Data Protection Impact Assessment under Article 35(4) of the General Data Protection Regulation (EU) 2016/679 (GDPR) Decision … 15.10.2018 1 (3) Office of the Data Protection Ombudsman P.O. Box 800, FIN-00521 Helsinki, …
16 March 2019
… operations which are subject to the requirement for a Data Protection Impact Assessment under Article 35(4) of the General Data Protection Regulation (EU) 2016/679 (GDPR) Decision … Norwegian Data Protection Authority UNOFFICIAL TRANSLATION Postal Address: … operations which are subject to the requirement for a Data Protection Impact Assessment under Article 35(4) of the …
16 October 2018
… operations which are subject to the requirement for a Data Protection Impact Assessment under Article 35(4) of the General Data Protection Regulation (EU) 2016/679 (GDPR) Decision … fields of application Examples 1 Processing of biometric data for the unique identification of natural per- sons if …
13 January 2021
… 13 January 2021 Poland The President of the Personal Data Protection Office (UODO) imposed a fine of PLN 1.9 million … measures to ensure the security of the processed data. UODO stated that the company infringed the principles … The President of the Personal Data Protection Office (UODO) imposed a fine of PLN 1.9 …
16 May 2023
… Article 5 (Principles relating to processing of personal data), Article 24 (Responsibility of the controller), Article 25 (Data protection by design and by default), Article 32 (Security … Article 5 (Principles relating to processing of personal data), Article 24 (Responsibility of the controller), …