29 March 2021
… investigation under the General Data Protection Regulation (GDPR), in February 2021 imposed a fine for improper … for infringements of Article 32(1) (b) and (c) of the GDPR, namely failure to ensure the ongoing integrity, … to the risk, infringement of Article 32(1)(b)(c) of the GDPR, and also taking into account the factors listed in …
8 September 2021
… Legal Reference: Data retention period (Article 5.1.e GDPR), Information (Articles 13 & 14 GDPR) Decision: Fine … had failed to comply with articles 5-1-e, 13 and 14 of the GDPR. Decision Breach of Article 5-1-e of the GDPR The … Legal Reference: Data retention period (Article 5.1.e GDPR), Information (Articles 13 & 14 GDPR) Decision: …
7 December 2023
… request, hence the Company breached Article 12(3) GDPR when they failed to meet the Complainant’s erasure … right to erasure according to Article 17(1)(b) GDPR. The Company also failed to meet the requirements of … newsletter database, so the Company breached Article 25(1) GDPR. Decision The Hungarian Supervisory Authority …
1 July 2025
… found CDETB: Infringed Articles 5(1)(f), 32(1) and 32(2) GDPR by failing to implement appropriate technical and … the appropriate level of security, Infringed Article 33(1) GDPR by failing to notify the DPC of the breach without undue delay, Infringed Article 34(1) GDPR by failing to notify the affected data subjects of the …
23 March 2022
… national case: National case Legal references: Article 31 GDPR(Co-operation with the supervisory authority), Article 58 (1) (e) GDPR, Article 58 (2) (i) GDPR, Article 83 (1-3) and (5) (e) GDPR (General conditions … national case: National case Legal references: Article 31 GDPR(Co-operation with the supervisory authority), Article …
1 March 2023
… case Legal references: Article 83 (1), (2), (4) (a) GDPR (General conditions for imposing administrative fines), Article 57 (1) (a) and (h) GDPR, Article 58 (2) (e) and (i) GDPR, Article 33 (1) GDPR (Notification of a personal data … case Legal references: Article 83 (1), (2), (4) (a) GDPR (General conditions for imposing administrative fines), …
22 January 2024
… order to verify the compliance with the provisions of the GDPR, and more precisely concerning the legal basis of the … that the data controller violated article 13.1.e) of the GDPR (no information about the recipients of the personal … the CNPD identified a violation of article 24.1 of the GDPR (responsibility of the data controller), as personal …
13 October 2021
… Controller: Ferde AS Legal Reference: Processor (ARTICLE 28 GDPR), Security of Processing (ARTICLE 32 GDPR), General principle for transfers (ARTICLE 44 GDPR) Decision: infringement declared and fine imposed Key … Controller: Ferde AS Legal Reference: Processor (ARTICLE 28 GDPR), Security of Processing (ARTICLE 32 GDPR), General …
20 January 2023
… relating to processing of personal data (Article 5 GDPR), Lawfulness of processing (Article 6 GDPR), Conditions for consent (Article 7 GDPR), Transparency and information obligations (Articles 12 … relating to processing of personal data (Article 5 GDPR), Lawfulness of processing (Article 6 GDPR), Conditions …
31 October 2019
… 40,000 on a public entity for failure to comply with the GDPR. The reason for imposing the fine was that the mayor of … of the Office concluded that Article 28 (3) of the GDPR had been violated. This provision obliges the … of lawfulness of processing (Article 5(1)(a) of the GDPR) and the principle of confidentiality (Article 5(1)(f) …
… of the General Data Protection Regulation (hereinafter: GDPR) 1 . The aim of the coordinated enforcement action is … data protection officers are in accordance with Art. 37-39 GDPR and they have the resources needed to carry out their … protection officer in any case pursuant to Art. 37 1. (a) GDPR 2 . The Authority intends to implement the CEF in the …
19 February 2021
… that CAIXABANK had violated Articles 13 and 14 of the GDPR. Following Article 83 (5) b of the GDPR, a fine of 2.000.000 EUR was imposed. When deciding on … that this constituted a breach of Article 6 of the GDPR, and according to Article 83 (5) a of the GDPR, an …
5 May 2022
… Right to erasure (Article 17) Decision: Infringement of the GDPR: article 12.1 and 12.3 GDPR Key words: Search engine - delisting request Summary … Spain case law, the applicability of Article 3.1. of the GDPR (not contested by the Google parties) and the useful …
22 May 2023
… Authority (IE DPA). This fine, which is the largest GDPR fine ever, was imposed for Meta’s transfers of personal … to bring its data transfers into compliance with the GDPR. Andrea Jelinek, EDPB Chair, said: “The EDPB found that … bring processing operations into compliance with Chapter V GDPR, by ceasing the unlawful processing, including storage, …
17 July 2025
… from the tests had been handled in compliance with the GDPR Key Findings The review shows that it is not … that the processing of personal data is lawful under the GDPR and that it does not interfere with the individual’s … which is subject to a strong legal protection under the GDPR. Decision Swedish SA concludes that SL and WÅAB has …
17 May 2024
… The Guide provides practical information to SMEs about GDPR compliance and benefits in an accessible and easily … Guide for small business covers various aspects of the GDPR, from data protection basics, to data subject rights … practical materials to help SMEs on their way to become GDPR compliant In the near future, the Guide will become …
19 September 2022
… may lead to an inconsistent application of the GDPR and a number of changes need to be made in … order to fulfil the requirements imposed by Art. 42 GDPR. After approval by the DPA, the certification mechanism … and data protection seals in accordance with Art. 42 (8) GDPR. …
19 September 2022
… may lead to an inconsistent application of the GDPR and a number of changes need to be made in … order to fulfil the requirements imposed by Art. 42 GDPR. After approval by the DPA, the certification mechanism … and data protection seals in accordance with Art. 42 (8) GDPR. …
3 September 2019
… non-compliance with the General Data Protection Regulation (GDPR), nonconformity with data subjects rights to erasure … comply with an order issued by the DSI in accordance with GDPR Article 58(2)(c) and (g) and Article 23 of the Personal … with the rights of the data subject in accordance with GDPR Article 17 – data subject right to obtain from the …
16 October 2019
… on the processing of personal data under Article 6(1)(b) GDPR in the context of the provision of online services to … Article 6(1) of the General Data Protection Regulation1 (GDPR) specifies that processing shall be lawful only on the … to respect the principle of fairness. 2. Article 6(1)(b) GDPR provides a lawful basis for the processing of personal …