28 October 2019
… PL Main legal reference Article 15 (Right of access by the data subject) Keywords Data subject rights Right of access Outcome Administrative … who is alleging that ("the controller" or " ") breached her data protection rights, as enshrined under the …
18 August 2020
… Spanish Data Protection Authority (AEPD) imposes fine of 70.000 EUR on XFERA MOVILES 18 August 2020 Spain The Spanish Data Protection Authority (AEPD) imposed a fine of 70.000 … phone number). The AEPD considered that this constitutes a breach of the principle of confidentiality, established in …
9 December 2020
… International Company made pursuant to Section 111 of the Data Protection Act 2018 Decision Type SA Ireland 9 December 2020 Fines Cybersecurity and data breach IE Final Decision 2MB Download Opinion / Binding …
4 March 2019
… PFroTECQON' l:ClMWJ.5510N'€fi' Information and Data Protection Commissioner vs COMPLAINT Reference is made … with file number CDP/IMI/LSA/4/2019) received from the Data Protection Commission of Ireland concerning ("the … who is alleging tha1 the controller" or "the Bank") breached her data protection rights, as enshrined under the …
3 December 2019
… Fine against hospital due to data protection deficits in patient management 3 December 2019 Germany The Commissioner for Data Protection and the Freedom of Information … in Rhineland-Palatinate. The fine is based on several breaches of the General Data Protection Regulation in the …
18 August 2020
… Spanish Data Protection Authority (AEPD) imposes fine on company for … advertisement exclusion 18 August 2020 Spain The Spanish Data Protection Authority (AEPD) imposed a fine of 1.200 EUR … the promotion. The AEPD considered that this constitutes a breach of Article 48(1)(b) of the Spanish Law 9/2014 General …
20 December 2022
… Processing the personal data by a processor must be documented 20 December 2022 … of the case The Polish SA has been notified of a personal data breach at the Sułkowice Cultural Centre. In the course of …
8 June 2021
… fines P4 company PLN 100,000 8 June 2021 Poland The Polish Data Protection Authority has imposed an administrative fine … authority within 24 hours after having detected a personal data breach. The reason for the administrative fine is that the …
13 October 2021
… The Norwegian Data Protection Authority: Ferde AS fined 13 October 2021 … on the Norwegian national broadcaster, NRK, the Norwegian Data Protection Authority learned that Ferde AS transfers … Data Protection Authority’s conclusion is that Ferde AS has breached several of the organization’s basic …
1 December 2019
… Hamburg Data Protection Commissioner's €51,000 fine against Facebook … GmbH 1 December 2019 Germany The Hamburg Commissioner for Data Protection and Freedom of Information imposed a fine of … of personal data of users. Given the negligence of the breach and the fact that Facebook only failed to notify an …
2 February 2024
… Data brokers: French SA fined Tagadamedia €75,000 2 February … professionals in the sector, in particular those who resell data, including many intermediaries in this ecosystem, known … operation of any legal basis. The French SA found two breaches of the GDPR: Failure to comply with the obligation …
21 June 2021
… out a fair risk analysis 21 June 2021 Poland The Polish Data Protection Authority has imposed an administrative fine … PLN 160 000 (EUR 35 000) for failing to notify a personal data protection breach. In addition, the company was fined for failing to …
16 September 2021
… monitoring system for online university exams to be in breach of privacy, fines university 16 September 2021 Italy … letters a), c) and e) (lawfulness, fairness, transparency; data minimisation; storage limitation); Article 6 (Lawful processing); Article 9 (Special category data); Article 13 (Information); Article 25 (Privacy by …
12 February 2021
… imposed on it in an administrative decision. The Personal Data Protection Office (UODO) ordered the entrepreneur to communicate the breach of their personal data to its patients and to provide these persons with …
28 March 2022
… to object and unlawful processing of employee’s personal data 28 March 2022 Greece Background information Date of … Article 13: Information to be provided where personal data are collected from the data subject. Article 21: Right … and that the processing in question was carried out in breach of the provisions of Articles 5(1)(f)(a), 5(2) and 13 …
25 November 2020
… 25 November 2020 Poland The President of the Personal Data Protection Office, after having conducted ex officio proceedings relating to breach of personal data protection of persons subject to medical quarantine by …
1 July 2025
… Article 5 (Principles relating to processing of personal data), Article 32 (Security of processing), Article 33 (Notification of a personal data breach to the supervisory authority), Article 34 …
8 June 2023
… 5 (1)(e)(Principles relating to processing of personal data), Article 6 (Lawfulness of processing), Article 9 (Processing of special categories of personal data), Article 32 (Security of processing), Article 33 (Notification of a personal data breach to the supervisory authority) Decision: …
9 June 2023
… Article 5 (Principles relating to processing of personal data), Article 24 (Responsibility of the controller), Article 25 (Data protection by design and by default), Article 32 … by design and by default, Data security, Personal data breach, Responsibility of the controller, Principles …
8 September 2022
… of Warsaw Legal Reference: Notification of a personal data breach to the supervisory authority (Article 33(1)), Communication of a personal data breach to the data subject (Article 34(1)) Decision: …