20 March 2019
… relying on the new powers set out in Article 58 of the EU GDPR. The warning was addressed to the Revenue Agency to … the 15 th of April this year, pursuant to Article 35 of the GDPR. The Garante had already emphasized that the Agency … data protection by design approach that is set forth in the GDPR; indeed, the Garante had pointed out that such a …
6 February 2025
… bank has failed to comply with its obligations under the GDPR after the personal data of a group of customers was … secrets does not exempt from the application of the GDPR. Decision The President of the Personal Data … 928 498,06 € on mBank for infringement of Article 34 of the GDPR. The fine amount represents 24 thousandths of one per …
7 October 2019
… Summary Final Decision Art 60 Complaint Infringement of the GDPR EDPBI:EE:OSS:D:2019:55 Background information Date of … Right to erasure (Article 17) Decision: Infringement of the GDPR, issue of reprimand in accordance with Article 58(2)(b) GDPR Key words: Right to object, Right to erasure, …
3 July 2020
… due to the complainant’s letter not mentioning the words ‘GDPR’, ‘CNIL’, ‘data protection’ or ‘personal data’. The … request, despite the time limits set out under Article 12 GDPR.Decision The LSA will issue reprimands to the controller in accordance with Article 58(2)(b) GDPR. Further, in accordance with Articles 12 and 24 GDPR, …
16 May 2022
… - article 35(2) icw 38(1) Decision: infringement of the GDPR, administrative fines Key words: illegally processing … violations of the General Data Protection Regulation (GDPR). For example, the Tax Administration had no statutory … - article 35(2) icw 38(1) Decision: infringement of the GDPR, administrative fines Key words: illegally processing …
2 July 2019
… access to his personal data in accordance with Article 15 GDPR. The controller attempted to provide the complainant … months after the deadline established under Article 12 (3) GDPR.Findings The LSA determined that the controller infringed Article 12(3) GDPR by exceeding the deadline to answer the complainant’s …
21 April 2022
… data pertaining to a special category of data under the GDPR (health data). The temperature checks were mainly based … of Mobility, which does not meet the criteria of the GDPR, i.e. to be a clear and precise legal standard whose … data pertaining to a special category of data under the GDPR (health data). The temperature checks were mainly based …
6 February 2025
… data. This was because, contrary to the indications of the GDPR the controller had not carried out an adequate risk … so that the processing meets the requirements of the GDPR and protects the rights of data subjects (point I(b) of … to comply with the principle of accountability under the GDPR (Article 5(2)) both before and after the incident. At …
29 August 2019
… of Article 56.1 of the General Data Protection Regulation (GDPR). The complaint, submitted by , was dealing with the … to use all of the powers conferred to it under the GDPR and the law of January 6th, 1978 as run ended. …
1 July 2021
… established by the General Data Protection Regulation (GDPR). Furthermore, the enterprise had failed to fulfil its duty to provide information (Article 13 of the GDPR), its duty to delete the contents of the complainant’s … established by the General Data Protection Regulation (GDPR). Furthermore, the enterprise had failed to fulfil its …
10 October 2019
… guidelines on the scope and application of Article 6(1)(b) GDPR in the context of information society services. … Equinix BCRs contain all elements required under article 47 GDPR and WP256 rev01 and contain the appropriate safeguards. … guidelines on the scope and application of Article 6(1)(b) GDPR in the context of information society services. …
28 March 2022
… Media Magazines B.V. Legal Reference: article 12 (2) GDPR Decision: Infringement of the GDPR, administrative fine Key words: identity document; … Media Magazines B.V. Legal Reference: article 12 (2) GDPR Decision: Infringement of the GDPR, administrative …
13 May 2021
… fined Basaren Drift AS NOK EUR 20,000 (NOK 200,000) for a GDPR violation. The case relates to CCTV surveillance of … premises. The General Data Protection Regulation (GDPR) requires that all processing of personal data must … fined Basaren Drift AS NOK EUR 20,000 (NOK 200,000) for a GDPR violation. The case relates to CCTV surveillance of …
… down additional procedural rules for the enforcement of the GDPR Statement 3/2024 on data protection authorities’ role … for clarifications on the consistent application of the GDPR, focusing on health research Letter to the Council of … down additional procedural rules for the enforcement of the GDPR Statement 3/2024 on data protection authorities’ role …
10 March 2021
… national authorities responsible for enforcement of the GDPR should be entrusted with the oversight of the privacy … the current ePrivacy Directive, and should complement the GDPR by providing additional strong guarantees for … national authorities responsible for enforcement of the GDPR should be entrusted with the oversight of the privacy …
… and processors List of documents assessed by the EDPB GDPR Certification Standard and Criteria, BC 5701:2024, … as European Data Protection Seal pursuant to Article 42.5 (GDPR) 2 December 2024 Publication Type: Opinion of the Board …
20 March 2019
… its websites, in accordance with Articles 13 and 14 of the GDPR, by the publication of a document entitled ‘General Data Protection Regulation (GDPR)’. The LSA noted controller’s commitment in pursuing a … appropriately and demonstrated compliance with the GDPR, the LSA together with the CSAs agreed to proceed to …
21 December 2018
… register.Findings According to recital 47 and Art 6.1.f GDPR legitimate interest of the controller or of a third … were filed before the 25 May 2018. Articles 13 and 14 GDPR were thus not yet applicable. However, under the GDPR the data subjects are to be informed from which source …
21 August 2019
… consent was not legally valid and Articles 5(1)(a), 6 and 7 GDPR were violated. Furthermore, the LI SA found that the controller did not comply with Article 15 GDPR as it did not appropriately provide the data subject … the storage period. 2 In addition, violations of Article 32 GDPR were also identified: first, the technical and …
2 September 2024
… the defendant has breached the articles 12.2, 12.3 et 15 GDPR because of the 14 month late reply and because the … sanction is based only on the infringement of article 15 GDPR, since both articles 12.2 et 12.3 were not in the … the defendant has breached the articles 12.2, 12.3 et 15 GDPR because of the 14 month late reply and because the …