2 February 2021
… EDPB response to TikTok letter on confidentiality breach 2 February 2021 Letters EDPB … the matter of a letter of 13 August 2020 from the Irish Data Protection Commissioner (the “IE SA”) to TikTok, which … issue to our attention. We are indeed concerned about any breach of confidentiality. Should you have further …
10 July 2020
… The President of the Personal Data Protection Office imposes a fine in cross-border … 10 July 2020 Poland The President of the Personal Data Protection Office (UODO) imposed a fine of PLN 15 000 … circumstances, among others, the seriousness of the breach (undermining the proper functioning of the personal …
5 August 2019
… Article 13 (Information to be provided where personal data are collected from the data subject) Keywords Data subject rights Outcome No violation Summary 59.8KB … file number CDP/IMI/LSA/6/2019) received from the Spanish Data Protection Agency (Agencia Espanola de Proteccion de …
17 May 2023
… Health data and use of cookies: French SA fines DOCTISSIMO 17 May … 5 (1)(e)(Principles relating to processing of personal data: storage limitation), Article 9 (Processing of special … of users. Key Findings The French SA has identified four breaches of the GDPR and a breach of the French Data …
18 September 2023
… Excessive data collection and lack of cooperation: the French SA … Article 5 (Principles relating to processing of personal data), Article 9 (Processing of special categories of … of data. Key Findings The French SA has found several breaches of the GDPR: Infringement of the data minimisation …
10 March 2025
… provider Sambla Group issued administrative fine for data security neglect 10 March 2025 Finland Background … Article 5 (Principles relating to processing of personal data), Article 25 (Data protection by design and by … Administrative fine, Communication order personal data breach, Reprimand Key words: Data security, Personal data …
4 March 2019
… PFroTECQON' l:ClMWJ.5510N'€fi' Information and Data Protection Commissioner vs COMPLAINT Reference is made … with file number CDP/IMI/LSA/4/2019) received from the Data Protection Commission of Ireland concerning ("the … who is alleging tha1 the controller" or "the Bank") breached her data protection rights, as enshrined under the …
10 May 2019
… Article 5 (Principles relating to processing of personal data) Article 6 (Lawfulness of processing) Keywords Data subject rights E-Commerce Third party access to personal data Outcome No violation Summary 89KB Download Decision … police. The third party access to the complainant personal data seems to indicate that his personal data have not been …
20 May 2025
… Slovenian SA: schools must adhere to the principle of data protection by design and by default 20 May 2025 … Controller: High school Legal Reference(s): Article 25 (Data protection by design and by default) … an ex officio inspection after receiving an official data breach notification. A school reported an unauthorized …
9 January 2025
… Data scraping: French SA fined KASPR €200 000 9 January 2025 … Article 5 (Principles relating to processing of personal data), Article 12 (Transparent information, communication … the KASPR extension. Key Findings The CNIL found several breaches of the GDPR: Failure to comply with the obligation …
23 January 2025
… Data scraping: French Supervisory Authority fined KASPR €240 … Article 5 (Principles relating to processing of personal data), Article 12 (Transparent information, communication … KASPR extension. Key Findings The CNIL found several breaches of the GDPR: Failure to comply with the obligation …
7 October 2020
… The Belgian Data Protection Authority has issued a warning and reprimand … institution for wrongful processing of personal data from the National Register. 7 October 2020 Belgium The … has the competence to take action in the case of a breach against environmental legislation, for example in the …
28 October 2019
… PL Main legal reference Article 15 (Right of access by the data subject) Keywords Data subject rights Right of access Outcome Administrative … Information and Data Protection Commissioner Vs COMPLAINT Reference is made … who is alleging that ("the controller" or " ") breached her data protection rights, as enshrined under the …
7 May 2025
… Polish SA: lack of procedures to protect personal data processed by the press - administrative fine of 13 500 … fine, Compliance order Key words: Administrative fine, Data security, Encryption, Personal data breach, Data subject rights Summary of the Decision …
13 September 2024
… and order to comply following a leak of expats’ personal data file 13 September 2024 Greece Background information … GDPR: Article 14: Information to be provided where personal data have not been obtained from the data subject; GDPR: … GDPR: Article 33: Notification of a personal data breach Controllers: Hellenic Ministry of the Interior, and a …
14 October 2020
… Norwegian Data Protection Authority: Decision to Fine Bergen Municipality 14 October 2020 Norway The Norwegian Data Protection Authority has given Bergen municipality a … Data Protection Authority was notified of a personal data breach by Bergen Municipality regarding the municipality's …
27 April 2023
… EDPB Launches Data Protection Guide for small business 27 April 2023 EDPB The EDPB has launched a Data Protection Guide to help small business owners on their … from data protection basics, to data subject rights, data breaches, and more. It contains videos, infographics, …
4 September 2020
… Main legal reference Article 33 (Notification of a personal data breach to the supervisory authority) Article 34 (Communication of a personal data breach to the data subject) Keywords Personal data … The Berlin DPA closes the case. 1. Facts concerning the data breach - Controller: Apassionata World GmbH - Incident: …
9 December 2020
… International Company made pursuant to Section 111 of the Data Protection Act 2018 Decision Type SA Ireland 9 December 2020 Fines Cybersecurity and data breach IE Final Decision 2MB Download Opinion / Binding … Chosaint Sonraí, 21 Cearnóg Mhic Liam, Baile Átha Cliath 2. Data Protection Commission, 21 Fitzwilliam Square, Dublin 2. …
18 August 2020
… Spanish Data Protection Authority (AEPD) imposes fine of 70.000 EUR on XFERA MOVILES 18 August 2020 Spain The Spanish Data Protection Authority (AEPD) imposed a fine of 70.000 … phone number). The AEPD considered that this constitutes a breach of the principle of confidentiality, established in …