28 October 2021
… lawfulness, fairness and transparency (article 5 (1) (a)), data minimisation (article 5 (1) (c)), Transparent … relating to CCTV monitoring of salon premises, the Data Protection Authority has concluded that the enterprise … monitoring of the reception area has been found to be in breach of the General Data Protection Regulation (GDPR). The …
28 October 2021
… and fine imposed Key words: Access Management, Health Data, Information Security Summary of the Decision Origin … to introduce relevant measures in order to improve personal data security. Key Findings The fine is imposed due to a … folder areas outside patient records. This constitutes a breach of the requirements regarding personal data security …
28 July 2022
… of processing) Article 33 (Notification of a personal data breach to the supervisory authority) Keywords Data security Encryption Notification of personal data …
22 November 2021
… of processing) Article 33 (Notification of a personal data breach to the supervisory authority) Keywords Data security Notification of personal data breach Outcome …
24 February 2020
… 46 (3) (b) of Regulation 2016/679 for transfers of personal data between EEA and non-EEA public authorities and bodies … 46 (3) (b) of Regulation 2016/679 for transfers of personal data between EEA and non-EEA public authorities and bodies … Guidelines Topics: Administrative arrangement The European Data Protection Board welcomes comments on the Guidelines …
18 August 2022
… of processing) Article 33 (Notification of a personal data breach to the supervisory authority) Keywords Definition of controller Personal data breach Outcome No violation Decision 75.3KB Íoslódáil …
19 August 2024
… of the controller) Article 33 (Notification of a personal data breach to the supervisory authority) Keywords Accountability Personal data breach Outcome Dismissal/Rejection of the case …
4 September 2024
… NO Main legal reference Article 15 (Right of access by the data subject) Article 33 (Notification of a personal data breach to the supervisory authority) Keywords Personal data …
2 May 2025
… for Commander-in-Chief of the Polish Police for disclosing data of a citizen at a press conference 2 May 2025 Poland … Article 9 (Processing of special categories of personal data), Article 24 (Responsibility of the controller) … Making the data available by the Commander-in-Chief in breach of the GDPR (without a legal basis) during the …
20 October 2020
… Guidelines 4/2019 on Article 25 Data Protection by Design and by Default 20 October 2020 … Adopted 1 Guidelines 4/2019 on Article 25 Data Protection by Design and by Default Version 2.0 Adopted … appropriate measures designed to prevent and manage data breach incidents; to guarantee the proper execution of data …
12 May 2021
… of processing) Article 33 (Notification of a personal data breach to the supervisory authority) Keywords Data security Personal data breach Outcome No violation …
11 November 2020
… of processing) Article 33 (Notification of a personal data breach to the supervisory authority) Article 34 (Communication of a personal data breach to the data subject) Keywords Data security …
2 May 2023
… of processing) Article 33 (Notification of a personal data breach to the supervisory authority) Article 34 (Communication of a personal data breach to the data subject) Keywords Data subject …
23 September 2021
… Information (Article 14 GDPR), Right of access by the data subject (Article 15 GDPR) Decision: Infringement of the … Key Findings Having investigated the complaint, the Data Protection Authority concluded that the enterprise had … Data Protection Authority has reprimanded an enterprise for breach of the General Data Protection Regulation’s (GDPR) …
10 June 2022
… confidentiality); Art. 13 and 14 (Information); Art. 25 (Data protection by design and by default); Art. 28 … originated from a set of inspections on the processing of data acquired via whistle-blowing management systems, with … processing activities for which it was the controller (in breach of Article 28, paragraphs 1 and 3, GDPR) – ranging …
21 June 2023
… Article 5 (Principles relating to processing of personal data) Article 32 (Security of processing) Article 33 (Notification of a personal data breach to the supervisory authority) Keywords Data …
27 May 2025
… of processing) Article 33 (Notification of a personal data breach to the supervisory authority) Keywords Notification of personal data breach Data security Outcome No sanction Other …
15 April 2024
… Article 14 (Information to be provided where personal data have not been obtained from the data subject) Decision: Administrative fine Key words: … websites. Key Findings The French SA found several breaches of the GDPR: Failure of the obligation to have a …
16 September 2025
… Article 5 (Principles relating to processing of personal data), Article 6 (Lawfulness of processing), Article 9 (Processing of special categories of personal data), Article 13 (Information to be provided where … scrive a Confcommercio: attenzione agli abusi - Data breach, il Garante sanziona Poste Vita per 80mila euro - …
18 December 2024
… Article 5 (Principles relating to processing of personal data) Article 24 (Responsibility of the controller) Article … of processing) Article 34 (Communication of a personal data breach to the data subject) Keywords Principles …