27 August 2019
… Decision nr 42 EDPBI:LI:OSS:D:2019:42 27 August 2019 LSA LI CSA DE/NI Main legal reference Article … Summary of the Final Decision Vaduz August 27, 2019 Ref: 103.1.2/2019-283 IMI Case A60FD 75031 Decision … Liechtenstein finds 1. That has contravened Art. 15 GDPR. Points 2, 4 and 5 of the information provided do not …
28 July 2020
… FOR PERSONAL DATA PROTECTION Ref. 11.17.001.007.263 27 July 2020 BY EMAIL Data Protection Officer F1 Markets … Dear Madam, Subject: Investigation of complaint under the GDPR - access request of Mr. Decision Further to the … and access to his data on the basis of article 15 of the GDPR. The email was also sent to his account manager. …
12 May 2023
… SA against Clearview AI Infringements of Articles 5, 6, 9, 27 GDPR 12 May 2023 Austria Background information Date of … references: Article 5, Article 6, Article 9, Article 27 GDPR Decision: Infringement of the GDPR, Order to erase … references: Article 5, Article 6, Article 9, Article 27 GDPR Decision: Infringement of the GDPR, Order to erase …
27 January 2020
… Decision nr 82 EDPBI:DEBW:OSS:D:2020:82 27 January 2020 LSA DE/BW CSA ALL SAs Main legal reference … information on our privacy notice pursuant to Article 13 GDPR, please consult our webpage at the following address: … the data breach as required in Article 33(1) and (3) GDPR. Also, the concerned data subjects have been informed …
27 January 2020
… Decision nr 84 EDPBI:FR:OSS:D:2020:84 27 January 2020 LSA FR CSA AT BE DE ES IT NL UK Main legal … of Article 56.1 of the General Data Protection Regulation (GDPR). had lodged a complaint with his national data … in accordance with the provisions of Article 58.2.b} of the GDPR. Indeed, your services have not informed about the …
4 December 2018
… Opinion 27/2018 on the draft list of the competent supervisory … of a data protection impact assessment (Article 35.4 GDPR) 4 December 2018 Opinion of the Board (Art. 64) Slovenia … of a data protection impact assessment (Article 35.4 GDPR) Adopted on 4 December 2018 2 Adopted TABLE OF CONTENTS …
26 July 2024
… Lithuanian SA: fine of € 2 385 276 on Vinted, UAB (company) 26 July 2024 Lithuania France … the company to applicants (infringements of Article 5(1)(a) GDPR (principles of fairness and transparency, Article 12(1) and (4) GDPR); processing in the context of a company’s ‘shadow …
25 September 2025
… Polish SA: administrative fine of 4 375 273 € for ING Bank Śląski S.A. for scanning customers’ … imposed on ING Bank Śląski an administrative fine of 4 375 273 € for infringement of Articles 5 (1)(a,b,c) and Article 6 (1) of the GDPR. For further information: • National press release: …
22 May 2019
… 1 year GDPR – taking stock 22 May 2019 EDPB Brussels, 22 May - Just a few days short of the GDPR’s first anniversary, the European Data Protection Board … 37% are ongoing. Based on information provided by SAs from 27 EEA countries Germany: Based on information provided by …
2 September 2024
… EUROPE, LTD for violations of Article 5.1(f) and 32 of the GDPR 2 September 2024 Spain Background information Date of … indications that UNIQLO violated article 5.1.f) of the GDPR, by not duly guaranteeing the confidentiality and … of 450,000 euros for the infringement, which was reduced to 270,000 euros, based on provisions in the Spanish law …
5 November 2025
… Help make GDPR compliance easy for organisations: what templates would … clarity, support and engagement , in order to facilitate GDPR compliance, the EDPB intends to develop a series of … with internationally recognized standards such as ISO/IEC 27701 (Privacy Information Management System) would …
10 December 2019
… Clauses for the purposes of compliance with art. 28 GDPR Decision Type SA Denmark 10 December 2019 Controller … Contractual Clauses submitted by the DK SA (Article 28(8) GDPR) … tal-Artikolu 28(3) tar-Regolament 2016/679 (il-GDPR) bejn [ISEM] CVR [CVR-NRU] [INDIRIZZ] "[KODIĊI POSTALI …
3 September 2024
… Article 15 (Right to access by the data subject), Article 27 (Representatives of controllers not established in the … (a) of the General Data Protection Regulation (hereinafter: GDPR), read in conjunction with Article 6(1) GDPR. Second, for the purpose of said service, Clearview …
20 January 2023
… of controllers not established in the Union (Article 27); Data protection impact assessment (Article 35) Decision: Infringement of the GDPR, Administrative fine, Ban on processing, Order to … limitation principles; infringement of Articles 6 and 7 GDPR; failure to provide the information set out by Articles …
13 October 2022
… Controller: US Company – Senseonics INC Legal Reference: GDPR Article 5, para 1 letters a), b) and f) (lawfulness, … data are collected from the data subject) and Article 27 (Representatives of controllers or processors not … in the Union) Decision: finding of infringements of the GDPR (imposition of administrative fine and order to comply) …
27 January 2023
… health information without an appropriate consent 27 January 2023 Finland Italy Belgium Czech Republic France … that the company did not have the consent required by the GDPR for processing data on body mass indices and maximal … The consent requested did not meet the requirements of the GDPR as it was not specific and informed. The SA finds that …
27 June 2023
… 204 for processing credit information without a legal basis 27 June 2023 Iceland Background information Date of … lawful ground for all processing operations (Article 6 (1) GDPR) Failure to comply with the obligation to process … fairly and in a transparent manner (Article 5(1)(a) GDPR) Decision No provision that clearly stipulates the …
27 June 2023
… 141 for processing credit information without a legal basis 27 June 2023 Iceland Background information Date of … lawful ground for all processing operations (Article 6 (1) GDPR) Failure to comply with the obligation to process … fairly and in a transparent manner (Article 5(1)(a) GDPR) Decision No provision that clearly stipulates the …
19 February 2020
… Berlin, 19 February 2020 521.10846 631.137 IMI CR 73122 DD 102720 FD 110629 Final Decision To Sandbox Interactive GmbH … a violation of the General Data Protection Regulation (GDPR) when processing personal data within your scope of … - 2 - Following our statement that, under Art. 12 (6) GDPR, the controller may only request additional information …
16 June 2020
… 9,973 o Netherlands: 8,290 o Portugal: 7,098 o Austria: 6,327 o Hungary: 5,379 o Romania: 5,017 o Sweden: 4,303 o … breach or mitigate its adverse effects (Art. 33 (3) (d) GDPR) The passwords of affected users were blocked and … or public com- munication (Art. 34 (1) or Art. 34 (3) (c) GDPR) The persons concerned were informed about the incident …