Search results | European Data Protection Board

Opinion 10/2019 on the draft list of the competent supervisory authority of Cyprus regarding the processing operations subject to the requirement of a data protection impact assessment (Article 35(4) GDPR)
12 July 2019
Opinion of the Board (Art. 64)
… the processing operations subject to the requirement of a data protection impact assessment (Article 35(4) GDPR) 12 July … the processing operations subject to the requirement of a data protection impact assessment (Article 35(4) GDPR) Adopted on … the processing operations subject to the requirement of a data protection impact assessment (Article 35(4) GDPR) …
EDPBI:DEBB:OSS:D:2019:53
2 October 2019
… PL Main legal reference Article 15 (Right of access by the data subject) Article 5 (Principles relating to processing of personal data) Keywords Identity verification Legal age Right of … complainant filed a complaint against ith the Austrian data protection authority ("ÖDSB") regarding the roof of …
Hungarian SA’s procedure on the handling of unsubscribe from newsletter
12 December 2023
News
… Complainant lodged a complaint by e-mail with the Romanian data protection authority concerning an unsuccessful unsubscribe … As this involved the cross-border processing of personal data, an Internal Market System (IMI) procedure was launched … Complainant lodged a complaint by e-mail with the Romanian data protection authority concerning an unsuccessful …
Opinion 17/2019 on the UK data protection supervisory authority draft accreditation requirements for a code of conduct monitoring body pursuant to article 41 GDPR
2 December 2019
Opinion of the Board (Art. 64)
… Opinion 17/2019 on the UK data protection supervisory authority draft accreditation … Adopted Opinion 17/2019 on the UK data protection supervisory authority draft accreditation … Opinion 17/2019 on the UK data protection supervisory authority draft accreditation …
Opinion 01/2019 on the draft list of the competent supervisory authority of the Principality of Liechtenstein regarding the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR)
23 January 2019
Opinion of the Board (Art. 64)
… the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR) 23 January … the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR) Adopted on … the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR) …
Opinion 7/2018 on the draft list of the competent supervisory authority of Greece regarding the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR)
3 October 2018
Opinion of the Board (Art. 64)
… the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR) 3 October … the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR) Adopted on … the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR) …
Dutch DPA imposes fine of €525,000 on Locatefamily.com
12 May 2021
News
… on Locatefamily.com 12 May 2021 Netherlands The Dutch Data Protection Authority (DPA) has imposed a fine of €525,000 on … of a representative in the EU is a breach of the General Data Protection Regulation (GDPR) and is the reason the fine … The Dutch Data Protection Authority (DPA) has imposed a fine of …
Opinion 6/2018 on the draft list of the competent supervisory authority of Estonia regarding the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR)
3 October 2018
Opinion of the Board (Art. 64)
… the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR) 3 October … the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR) Adopted on … the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR) …
Guidelines 3/2019 on processing of personal data through video devices
12 July 2019
Guidelines
… Guidelines 3/2019 on processing of personal data through video devices Guidelines 3/2019 on processing of personal data through video devices The European Data Protection Board welcomes comments on the Guidelines 3/2019 … 09-10 July 2019 Guidelines 3/2019 on processing of personal data through video devices Version for public consultation …
Opinion 4/2018 on the draft list of the competent supervisory authority of Czech Republic regarding the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR)
3 October 2018
Opinion of the Board (Art. 64)
… the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR) 3 October … the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR) Adopted on … the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR) …
Guidelines 1/2020 on processing personal data in the context of connected vehicles and mobility related applications
28 January 2020
Guidelines
… Guidelines 1/2020 on processing personal data in the context of connected vehicles and mobility … reference: 1/2020 Guidelines 1/2020 on processing personal data in the context of connected vehicles and mobility … Topics: New Technology e-Privacy The European Data Protection Board welcomes comments on the Guidelines 1/2020 …
Support Pool of Experts (SPE) Programme
… . The main objective of this programme is to help European Data Protection Authorities (DPAs) increase their capacity to … AI Auditing by Dr. Gemma GALDON CLAVELL Data Protection Officer training by Dr. Tihomir Katulić AI Risks: Optical … . The main objective of this programme is to help European Data Protection Authorities (DPAs) increase their capacity …
EDPBI:DEBE:OSS:D:2020:136
4 September 2020
… Main legal reference Article 33 (Notification of a personal data breach to the supervisory authority) Article 34 (Communication of a personal data breach to the data subject) Keywords Personal data breach Phishing emails … The Berlin DPA closes the case. 1. Facts concerning the data breach - Controller: Apassionata World GmbH - Incident: …
Opinion 13/2019 on the draft list of the competent supervisory authority of France regarding the processing operations exempt from the requirement of a data protection impact assessment (Article 35(5) GDPR)
12 July 2019
Opinion of the Board (Art. 64)
… the processing operations exempt from the requirement of a data protection impact assessment (Article 35(5) GDPR) 12 July … the processing operations exempt from the requirement of a data protection impact assessment (Article 35(5) GDPR) Adopted on … the processing operations exempt from the requirement of a data protection impact assessment (Article 35(5) GDPR) …
Polish SA: administrative fines for GDPR infringements in the organisation of an election by postal vote in 2020 – 23 757 € for Minister of Digital Affairs and 6 444 174 € for the Polish Post
2 May 2025
News
… Article 5 (Principles relating to processing of personal data), Article 6 (Lawfulness of processing), Article 83 … administrative fine Key words: administrative fine, data subject rights, Principles relating to processing of … the the Polish SA's President of the Personal Data Protection Office established that, without a legal basis, …
Italian DPA: Green light from the Italian SA subject to adequate safeguards
10 June 2021
News
… ensure the current validity of a green pass in line with data protection principles; furthermore, checks based on this app will only disclose the data subject’s name without displaying any other information … ensure the current validity of a green pass in line with data protection principles; furthermore, checks based on …
Dictamen conjunto 2/2021 del CEPD-SEPD sobre la Decisión de Ejecución de la Comisión Europea relativa a las cláusulas contractuales tipo para la transferencia de datos personales a terceros países
14 January 2021
EDPB/EDPS Joint Opinion
… standard contractual clauses for the transfer of personal data to third countries for the matters referred to in … 4.3.1 Clause 1 - Data protection safeguards – Module One (Transfer controller … standard contractual clauses for the transfer of personal data to third countries pursuant to Regulation (EU) 2016/679 …
Recomendaciones 01/2020 sobre medidas que complementan los instrumentos de transferencia para garantizar el cumplimiento del nivel de protección de los datos personales de la UE
11 November 2020
Recommendations
… transfer tools to ensure compliance with the EU level of protection of personal data Start Date: 11 November 2020 End Date: 21 December 2020 … Type: Recommendations Topics: International Transfers of Data The European Data Protection Board welcomes comments on …
Polish DPA imposes 100 000 PLN fine on the Surveyor General of Poland
2 September 2020
News
… Infringement of the principle of lawfulness of personal data processing and making intentionally available without a … and the evidence proving the appointment of the Data Protection Officer. As a result, the President of the UODO imposed an … Infringement of the principle of lawfulness of personal data processing and making intentionally available without a …
EDPB-EDPS Joint Opinion 1/2021 on standard contractual clauses between controllers and processors
14 January 2021
EDPB/EDPS Joint Opinion
… ..................................................7 4.2.5 Data Subject rights (Clause 8 of the Draft … Adopted 3 The European Data Protection Board and the European Data Protection … natural persons with regard to the processing of personal data and on the free movement of such data, and repealing …