11 July 2019
… Article 5 (Principles relating to processing of personal data) Article 6 (Lawfulness of processing) Keywords Consumer … 1/11 THE OFFICE FOR PERSONAL DATA PROTECTION Pplk. Sochora 27, 170 00 Prague 7, Czech … the above conclusion in itself does not mean that the is in breach of the rules stipulated by Regulation (EU) 2016/679, …
8 July 2019
… Intention to fine British Airways £183.39m under GDPR for data breach 8 July 2019 United Kingdom Following an extensive … British Airways £183.39M for infringements of the General Data Protection Regulation (GDPR). The proposed fine relates … British Airways £183.39M for infringements of the General Data Protection Regulation (GDPR). The proposed fine relates …
7 September 2022
… Fine for breaching of the obligation to ensure the security of personal data 7 September 2022 Belgium Background information Date of … easily have had access to various financial and medical data of the complainant. Key Findings In its written … easily have had access to various financial and medical data of the complainant. Key Findings In its written …
10 January 2020
… Main legal reference Article 33 (Notification of a personal data breach to the supervisory authority) Article 34 (Communication of a personal data breach to the data subject) Keywords Personal data … now completed its investigation into the theft of personal data in relation to customers. In summary, it is my …
22 June 2019
… Main legal reference Article 33 (Notification of a personal data breach to the supervisory authority) Article 34 (Communication of a personal data breach to the data subject) Keywords Personal data … complaint and I am of the view that has complied with its data protection obligations. You have explained that …
15 April 2020
… Article 5 (Principles relating to processing of personal data) Article 7 (Conditions for consent) Article 32 … of processing) Article 33 (Notification of a personal data breach to the supervisory authority) Keywords Personal … 1 Summary Final Decision Art 60 Data breach notification No sanction EDPBI:UK:OSS:D:2020:100 …
16 May 2019
… Article 14 (Information to be provided where personal data have not been obtained from the data subject) Article 24 (Responsibility of the controller) … of processing) Article 33 (Notification of a personal data breach to the supervisory authority) Article 5 (Principles …
31 July 2019
… Company fined €150,000 by the Hellenic DPA The Hellenic Data Protection Authority, in response to a complaint, … of the lawfulness of the processing of personal data of the employees of the company ‘PRICEWATERHOUSECOOPERS … to provide consent to the processing of their personal data. The DPA considered that PWC BS as the controller: …
16 May 2019
… reference Article 6 (Lawfulness of processing) Keywords Data security Lawfulness of processing Personal data breach Outcome No violation Summary 87.7KB Download Decision … Decision: No liability of the processor Key words: Data breach, Lawfulness of processing, Security of …
22 April 2021
… Polish DPA: Identifying breaches too late puts customers at risk 22 April 2021 … with a long delay. Because of this negligence the Polish Data Protection Authority imposed a fine on the company in … of over PLN 1.1 million. Lost correspondence with personal data or delivery of such a mail to the wrong recipient - …
11 February 2021
… School of Judiciary and Public Prosecution (KSSIP) for breaching the GDPR rules 11 February 2021 Poland The … its obligations as a controller. According to the Personal Data Protection Office, the controller did not take the … measures in order to ensure the security of personal data contained in the copy of the database of the training …
8 September 2022
… Supervisory Authority fines Enel Energie Muntenia S.A. for breaching Article 32 GDPR 8 September 2022 Romania … of processing (Article 32). Notification of a personal data breach to the supervisory authority (Article 33). … Infringement of the GDPR, Corrective measures. Key words: Data breach, security of processing. Summary of the …
21 February 2022
… for Privacy Protection (IMY) fines Region Uppsala for breaches in its security 21 February 2022 Sweden Background … for Privacy Protection (IMY) has received two personal data breach notifications from Region Uppsala. The data breaches concern sensitive personal data sent without …
3 March 2022
… but the risk of their occurrence as a reason for breach notification 3 March 2022 Poland Background … S.A. Legal Reference: Communication of a personal data breach to the data subject (Article 34(1)) Decision: Infringement of the … S.A. Legal Reference: Communication of a personal data breach to the data subject (Article 34(1)) Decision: …
19 March 2021
… Polish DPA: Breach of the GDPR provisions by Funeda results in a fine 19 … Sp. z o.o. company breached the provisions of the General Data Protection Regulation (GDPR) by not cooperating with Polish Data Protection Authority in the scope of performing the … Sp. z o.o. company breached the provisions of the General Data Protection Regulation (GDPR) by not cooperating with …
18 July 2023
… Romanian SA fines UiPath SRL for breaching Articles 25 and 32 GDPR 18 July 2023 Romania … Controller: UiPath SRL Legal references: Article 25 (Data protection by design and by default), Article 32 … Decision: Administrative fine, Compliance order Key words: Data protection by design and by default, Personal data …
5 November 2025
… the EDPB will already work on creating a template for data protection impact assessment (DPIA) and for data breach notifications. We invite you to provide your … the EDPB will already work on creating a template for data protection impact assessment (DPIA) and for data breach …
15 December 2020
… Irish Data Protection Commission announces decision in Twitter inquiry 15 December 2020 Ireland The Data Protection Commission (DPC) has today announced a … commenced in January, 2019 following receipt of a breach notification from Twitter and the DPC has found that …
30 June 2021
… must be notified to the supervisory authority and the data subjects 30 June 2021 Poland Mediation Promotion and … 13 000 PLN (3 000 EUR) for failing to notify the personal data breach to the supervisory authority without undue delay, and … 13 000 PLN (3 000 EUR) for failing to notify the personal data breach to the supervisory authority without undue …
28 November 2024
… fine of 2 500 € for the way of collecting the data 28 November 2024 Poland Background information Date of … Article 24 (Responsibility of the controller), Article 25 (Data protection by design and by default), Article 32 … of processing), Article 33 (Notification of a personal data breach to the supervisory authority), Article 34 …