11 July 2019
… Guidelines on Video Surveillance, which clarify how the GDPR applies to the processing of personal data when using … devices and aim to ensure the consistent application of the GDPR in this regard. The guidelines cover both traditional … EU data subjects and legal certainty for businesses. Art.64 GDPR Opinion on Standard Contractual Clauses for processors …
16 December 2021
… law. In seeking to ensure the consistent application of the GDPR, the process leading to consensus or majority positions … law and procedures. Within the framework provided by the GDPR, the Members of the Board work together in a respectful … that hold one position or another – it is simply the GDPR working as intended. In this regard, although not …
15 July 2021
… its first urgent binding decision pursuant to Art. 66(2) GDPR following a request from the Hamburg supervisory … Ireland Ltd (Facebook IE) on the basis of Art. 66 (1) GDPR. The DE-HH SA ordered a ban on processing WhatsApp user … existence of urgency, the EDPB considered that Art. 61(8) GDPR was not applicable as the DE-HH SA did not demonstrate …
4 May 2022
… the authority of the controller or processor (Article 29 GDPR), Security of processing (Article 32 GDPR), Processor (Article 28 GDPR) Decision: Administrative fine Key words: Health data …
26 July 2024
… the company to applicants (infringements of Article 5(1)(a) GDPR (principles of fairness and transparency, Article 12(1) and (4) GDPR); processing in the context of a company’s ‘shadow … (infringements of lawfulness principle, Article 5(1)(a) GDPR and Article 6(1) GDPR); improper implementation of the …
7 December 2023
… can therefore be lawful only if it has a legal basis under GDPR Article 6(1). Where the processing also involves … the controller must have a legal basis under Article 6(1) GDPR or the processing must also comply with one of the situations set out in Article 9(2) GDPR. The reply of the Company to the request of access …
23 January 2024
… Key Findings The French SA found several breaches of the GDPR regarding: Warehouse stock and order management: … with the principle of data minimisation (Article 5.1.c GDPR). Failure to ensure lawful processing (Article 6 GDPR) by using three indicators which are illegal: the "Stow …
26 September 2018
… an important tool for the consistent application of the GDPR across the EU. DPIA is a process to help identify and … the types of processing which could require a DPIA, the GDPR calls for the national supervisory authorities to … and challenges of consistency in practice. The GDPR does not require full harmonisation or an 'EU list', …
30 June 2022
… (Articles 44 and 46). Decision: infringement of the GDPR; order to comply; order to suspend data flows to U.S.; … data transfers despite their being in violation of the GDPR. Key Findings: The Italian SA found that Caffeina … be transferred to the U.S. in violation of Chapter V of the GDPR, since the measures adopted by Google to supplement the …
16 June 2022
… on certification as a tool for transfers . Art. 46(2)(f) GDPR introduces approved certification mechanisms as a new … tool for transfers - a new transfer tool introduced by the GDPR. The guidelines provide guidance on how this tool can … a dispute resolution decision on the basis of Art. 65 GDPR . The binding decision seeks to address the lack of …
20 August 2020
… the e-Privacy Directive forms lex specialis vis-à-vis the GDPR (as lex generalis), as stated in article 95 GDPR, the provisions with regard to consent of the GDPR remain applicable as preconditions for lawful …
2 February 2024
… request, hence the Company breached Article 12(3) of GDPR when they failed to meet the Complainant’s erasure … right to erasure according to Article 17(1)(b) of GDPR. The Company also failed to meet the requirements of … database, so the Company breached Article 25(1) of GDPR. Decision The Authority established that the Company …
19 November 2018
… on clinical trials Q&A on the interplay between the GDPR and the Clinical Trials Regulation Following a … developed by the Commission, on the interplay between the GDPR and the Clinical Trials Regulation. Guidelines on … a common interpretation of the territorial scope of the GDPR and provide further clarification on the application of …
7 December 2023
… request, hence the Company breached Article 12(3) GDPR when they failed to meet the Complainant’s erasure … right to erasure according to Article 17(1)(b) GDPR. The Company also failed to meet the requirements of … newsletter database, so the Company breached Article 25(1) GDPR. Decision The Hungarian Supervisory Authority …
13 October 2021
… Controller: Ferde AS Legal Reference: Processor (ARTICLE 28 GDPR), Security of Processing (ARTICLE 32 GDPR), General principle for transfers (ARTICLE 44 GDPR) Decision: infringement declared and fine imposed Key …
14 April 2021
… Guidelines on the application of Article 65(1)(a) GDPR, Guidelines on the targeting of social media users and … UK adequacy decisions . Opinion 14/2021 is based on the GDPR and assesses both general data protection aspects and … draft adequacy decision. This assessment is based on the GDPR Adequacy Referential WP254 . Opinion 15/2021 is based …
22 February 2023
… by national DPAs via binding decisions under Art. 65 GDPR and to advise the EU legislator on data protection … further guidance and develop awareness-raising tools on the GDPR for a wider audience. Furthermore, the EDPB intends to … such as on the interplay between the AI Act and the GDPR and on the use of social media by public bodies. … The …
8 September 2021
… Legal Reference: Data retention period (Article 5.1.e GDPR), Information (Articles 13 & 14 GDPR) Decision: Fine … had failed to comply with articles 5-1-e, 13 and 14 of the GDPR. Decision Breach of Article 5-1-e of the GDPR The …
22 May 2023
… Authority (IE DPA). This fine, which is the largest GDPR fine ever, was imposed for Meta’s transfers of personal … to bring its data transfers into compliance with the GDPR. Andrea Jelinek, EDPB Chair, said: “The EDPB found that … bring processing operations into compliance with Chapter V GDPR, by ceasing the unlawful processing, including storage, …
20 May 2021
… During its plenary session, the EDPB adopted two Art. 64 GDPR opinions on the first draft decisions on transnational … guidance and define specific requirements (i.e. Art. 28 GDPR) for processors in the EU subject to these Codes. They … is of the opinion that both draft codes comply with the GDPR and fulfil the requirements set forth in Art. 40 and 41 …