Search results | European Data Protection Board

Polish DPA fines Smart Cities: Another fine for lack of cooperation with the Personal Data Protection Office
2 February 2021
News
… supervisory authority within the remit of Article 51 of the GDPR, UODO monitors and enforces the application of this … supervisory authority within the remit of Article 51 of the GDPR, UODO monitors and enforces the application of this …
CoC 01 Verhaltensregeln für die Prüf- und Löschfristen von personenbezogenen Daten durch die deutschen Wirtschaftsauskunfteien
11 August 2020
Other
… Germany Type Code for Controllers/Processors subject to GDPR Scope National Monitoring Body TIGGES DCO GmbH …
Lundbeck Group
5 May 2022
… BCR - C Lundbeck Group 92.2KB English Télécharger Pre-GDPR No … Lundbeck Group …
Genpact
28 May 2024
… decision Genpact 2024 258.9KB Romanian Télécharger Pre-GDPR No … Genpact …
Codigo de conducta regulador del tratamiento de datos personales en los sistemas comunes de informacion del sector asegurador
15 September 2022
Other
… Spain Type Code for Controllers/Processors subject to GDPR Scope National Código de conducta regulador del …
Alfa Laval Group
8 April 2025
… decision (EN) 100.7KB English Swedish Télécharger Pre-GDPR No … Alfa Laval Group …
Talan Group
3 October 2024
… 149.6KB English Télécharger Pre-GDPR No … Talan Group …
Norican Group
22 March 2022
… decision Norican Group 2022 93.5KB English Télécharger Pre-GDPR No … Norican Group …
Viega Group
2 December 2024
… Decision (EN) 194.1KB German English Télécharger Pre-GDPR No … Viega Group …
Decision of the restricted committee No. SAN-2022-017 of 3 August 2022 concerning ACCOR SA
19 August 2022
Decision by the SA
… Authority regarding Accor SA under Article 65(1)(a) GDPR … Decision of the restricted committee No. SAN-2022-017 …
EDPB adopts final version of Guidelines on data subject rights - right of access
17 April 2023
News
… aligns the text of the Guidelines with the text of the GDPR, which does not provide for one-stop-shop for … aligns the text of the Guidelines with the text of the GDPR, which does not provide for one-stop-shop for …
Norwegian DPA: Company fined for illegal forwarding of e-mail
13 May 2021
News
… in addition to the requirement for legal basis under the GDPR. Nor had the business drawn up procedures for access to … in addition to the requirement for legal basis under the GDPR. Nor had the business drawn up procedures for access to …
Polish SA: administrative fine of 5 700 € for failure to implement appropriate technical and organisational measures to ensure security
6 February 2025
News
… Kutno for infringement of Articles 5, 24, 25, 28, 32 of the GDPR. An unencrypted pendrive with the personal data of … programme, for infringement of Articles 28 and 32 of the GDPR. For further information: decision in national language … Kutno for infringement of Articles 5, 24, 25, 28, 32 of the GDPR. An unencrypted pendrive with the personal data of …
Dutch SA fines Transavia for poor personal data security
23 September 2021
News
… Article 32 (1) and (2) Decision: Infringement of the GDPR, administrative fine Key words: Security of processing, … Article 32 (1) and (2) Decision: Infringement of the GDPR, administrative fine Key words: Security of processing, …
Ivoclar Vivadent Group
23 July 2024
… 331.8KB German English Télécharger Pre-GDPR No … Ivoclar Vivadent Group …
The Norwegian SA imposes fine against Elektro & Automasjon Systemer AS
13 December 2021
News
… Legal basis (Article 6) Decision: Infringement of the GDPR declared and fine imposed, order to establish … Legal basis (Article 6) Decision: Infringement of the GDPR declared and fine imposed, order to establish …
Processing the personal data by a processor must be documented
20 December 2022
News
… that the processing of personal data complies with the GDPR. Key Findings Failure to verify the processor and its … that the processing of personal data complies with the GDPR. Key Findings Failure to verify the processor and its …
Polish SA: risk assessment and acting in accordance with established procedures counteract data loss
20 December 2022
News
… documentation since the beginning of the application of the GDPR and had performed a risk assessment. The controller was … documentation since the beginning of the application of the GDPR and had performed a risk assessment. The controller was …
Decision concerning a complaint directed against WhatsApp Ireland Limited in respect of the WhatsApp service made pursuant to Section 113 of the Data Protection Act 2018 (Inquiry 18-5-6)
24 January 2023
Decision by the SA
… by the Irish SA regarding WhatsApp Ireland Limited (Art. 65 GDPR) … Decision concerning a complaint directed against …
Decision concerning a complaint directed against Meta Platforms Ireland Limited in respect of the Instagram service made pursuant to Section 113 of the Data Protection Act 2018 (Inquiry 18-5-7)
12 January 2023
Decision by the SA
… Ireland Limited and its Instagram service (Art. 65 GDPR) … Decision concerning a complaint directed against …