28 July 2020
… FOR PERSONAL DATA PROTECTION Ref. 11.17.001.007.263 27 July 2020 BY EMAIL Data Protection Officer F1 Markets … Dear Madam, Subject: Investigation of complaint under the GDPR - access request of Mr. Decision Further to the … and access to his data on the basis of article 15 of the GDPR. The email was also sent to his account manager. …
12 May 2023
… SA against Clearview AI Infringements of Articles 5, 6, 9, 27 GDPR 12 May 2023 Austria Background information Date of … references: Article 5, Article 6, Article 9, Article 27 GDPR Decision: Infringement of the GDPR, Order to erase … references: Article 5, Article 6, Article 9, Article 27 GDPR Decision: Infringement of the GDPR, Order to erase …
4 December 2018
… Opinion 27/2018 on the draft list of the competent supervisory … of a data protection impact assessment (Article 35.4 GDPR) 4 December 2018 Opinion of the Board (Art. 64) Slovenia … of a data protection impact assessment (Article 35.4 GDPR) Adopted on 4 December 2018 2 Adopted TABLE OF CONTENTS …
26 July 2024
… Lithuanian SA: fine of € 2 385 276 on Vinted, UAB (company) 26 July 2024 Lithuania France … the company to applicants (infringements of Article 5(1)(a) GDPR (principles of fairness and transparency, Article 12(1) and (4) GDPR); processing in the context of a company’s ‘shadow …
25 September 2025
… Polish SA: administrative fine of 4 375 273 € for ING Bank Śląski S.A. for scanning customers’ … imposed on ING Bank Śląski an administrative fine of 4 375 273 € for infringement of Articles 5 (1)(a,b,c) and Article 6 (1) of the GDPR. For further information: • National press release: …
22 May 2019
… 1 year GDPR – taking stock 22 May 2019 EDPB Brussels, 22 May - Just a few days short of the GDPR’s first anniversary, the European Data Protection Board … 37% are ongoing. Based on information provided by SAs from 27 EEA countries Germany: Based on information provided by …
27 April 2026
… Marking 10 years of the GDPR: the evolution of the European data protection landscape 27 April 2026 EDPB Brussels, 27 April – Today marks the 10th anniversary of the GDPR’s adoption, the first comprehensive data protection … Brussels, 27 April – Today marks the 10th anniversary of the GDPR’s adoption, the first comprehensive data protection …
5 November 2025
… Help make GDPR compliance easy for organisations: what templates would … clarity, support and engagement , in order to facilitate GDPR compliance, the EDPB intends to develop a series of … with internationally recognized standards such as ISO/IEC 27701 (Privacy Information Management System) would …
2 September 2024
… EUROPE, LTD for violations of Article 5.1(f) and 32 of the GDPR 2 September 2024 Spain Background information Date of … indications that UNIQLO violated article 5.1.f) of the GDPR, by not duly guaranteeing the confidentiality and … of 450,000 euros for the infringement, which was reduced to 270,000 euros, based on provisions in the Spanish law …
10 December 2019
… Clauses for the purposes of compliance with art. 28 GDPR Decision Type SA Denmark 10 December 2019 Controller … Contractual Clauses submitted by the DK SA (Article 28(8) GDPR) … tal-Artikolu 28(3) tar-Regolament 2016/679 (il-GDPR) bejn [ISEM] CVR [CVR-NRU] [INDIRIZZ] "[KODIĊI POSTALI …
3 September 2024
… Article 15 (Right to access by the data subject), Article 27 (Representatives of controllers not established in the … (a) of the General Data Protection Regulation (hereinafter: GDPR), read in conjunction with Article 6(1) GDPR. Second, for the purpose of said service, Clearview …
20 January 2023
… of controllers not established in the Union (Article 27); Data protection impact assessment (Article 35) Decision: Infringement of the GDPR, Administrative fine, Ban on processing, Order to … limitation principles; infringement of Articles 6 and 7 GDPR; failure to provide the information set out by Articles …
13 October 2022
… Controller: US Company – Senseonics INC Legal Reference: GDPR Article 5, para 1 letters a), b) and f) (lawfulness, … data are collected from the data subject) and Article 27 (Representatives of controllers or processors not … in the Union) Decision: finding of infringements of the GDPR (imposition of administrative fine and order to comply) …
16 June 2020
… 9,973 o Netherlands: 8,290 o Portugal: 7,098 o Austria: 6,327 o Hungary: 5,379 o Romania: 5,017 o Sweden: 4,303 o … breach or mitigate its adverse effects (Art. 33 (3) (d) GDPR) The passwords of affected users were blocked and … or public com- munication (Art. 34 (1) or Art. 34 (3) (c) GDPR) The persons concerned were informed about the incident …
27 January 2023
… health information without an appropriate consent 27 January 2023 Finland Italy Belgium Czech Republic France … that the company did not have the consent required by the GDPR for processing data on body mass indices and maximal … The consent requested did not meet the requirements of the GDPR as it was not specific and informed. The SA finds that …
27 June 2023
… 204 for processing credit information without a legal basis 27 June 2023 Iceland Background information Date of … lawful ground for all processing operations (Article 6 (1) GDPR) Failure to comply with the obligation to process … fairly and in a transparent manner (Article 5(1)(a) GDPR) Decision No provision that clearly stipulates the …
27 June 2023
… 141 for processing credit information without a legal basis 27 June 2023 Iceland Background information Date of … lawful ground for all processing operations (Article 6 (1) GDPR) Failure to comply with the obligation to process … fairly and in a transparent manner (Article 5(1)(a) GDPR) Decision No provision that clearly stipulates the …
3 December 2024
… sen on noudatettava yleistä tietosuoja-asetusta (GDPR). Tietosuojaneuvosto tarkentaa ohjeissaan yleisen … * Suuntaviivoista järjestetään julkinen kuuleminen 27. tammikuuta 2025 saakka. EU:n tietosuojasinetin … Euroopassa ja eurooppalaisena tietosuojasinettinä. GDPR-sertifiointi auttaa organisaatioita osoittamaan, että …
13 October 2021
… 2021 Norway Background information Date of final decision: 27 September 2021 Cross-border case or national case: … Controller: Ferde AS Legal Reference: Processor (ARTICLE 28 GDPR), Security of Processing (ARTICLE 32 GDPR), General principle for transfers (ARTICLE 44 GDPR) …
27 February 2019
… of the General Data Protection Regulation (EU) 2016/679 (GDPR) Decision Type SA Liechtenstein 27 February 2019 Data Protection Impact Assessment (DPIA) … of a data protection impact assessment (Article 35.4 GDPR) … 1 List of processing operations according to Art. 35 (4) GDPR, for which the Data Protection Authority (DSS) as the …