17 April 2024
… the EDPB adopted an Opinion following an Art. 64(2) GDPR request by the Dutch, Norwegian & Hamburg Data … factor in the assessment of valid consent under the GDPR. The EDPB stresses that obtaining consent does not … from adhering to all the principles outlined in Art. 5 GDPR, such as purpose limitation, data minimisation and …
11 April 2022
… Reference: Article 5 (2) Decision: Infringement of the GDPR Key words: Deletion Summary of the Decision Origin … million EUR) for the infringement of Article 5 (2) of the GDPR. Decision The Danish Supervisory Authority has reported … million EUR) for the infringement of Article 5 (2) of the GDPR. For further information: …
21 January 2019
… in accordance with the General Data Protection Regulation (GDPR), for lack of transparency, inadequate information and … as defined in the General Data Protection Regulation (“GDPR”), the CNIL sent these two complaints to its European … assess if it was competent to deal with them. Indeed, the GDPR establishes a “one-stop-shop mechanism” which provides …
25 September 2020
… in accordance with the General Data Protection Regulation (GDPR). The topics of direct marketing included various … Article 4(11) of the EU General Data Protection Regulation (GDPR), the consent must be a freely given, specific, … the data subjects’ right to object in accordance with the GDPR. In the controller’s view, it has targeted the …
14 March 2022
… the data subject (Article 13) Decision: Infringement of the GDPR, administrative fine and reprimand Summary of the … right to inspect their own data in accordance with the GDPR or to give a reason for restricting this right. The … Ombudsman issued the company a reprimand for violating the GDPR and ordered it to change its procedure to comply with …
12 June 2023
… Origin of the case The General Data Protection Regulation, GDPR, entered into force in 2018 and means, among other … information pursuant to article 15.1 a-h and 15.2 of the GDPR that should be provided to the individual making the … violations of articles 12.1, 15.1 a-d, g and 15.2 of the GDPR. IMY has further found that Spotify had failed in its …
2 May 2025
… examined the case and found that the provisions of the GDPR had been infringed (Article 6(1) and 9(1)). The Polish DPA concludes that this infringement of the GDPR is of a serious nature. The personal data of the person … data available by the Commander-in-Chief in breach of the GDPR (without a legal basis) during the conference entails …
15 September 2023
… that TikTok Technology Limited (TikTok) infringed the GDPR's principle of fairness when processing personal data … TikTok infringed the principle of fairness under the GDPR. Consequently, the EDPB instructed the IE DPA to … infringement and to order TikTok to comply with the GDPR by eliminating such design practices. The EDPB also …
… the position in their organisations required by Art. 37-39 GDPR and the resources needed to carry out their tasks. The … all DPOs notified in Liechtenstein pursuant to Art. 37 (7) GDPR. The results of the joint initiative will be analysed … the position in their organisations required by Art. 37-39 GDPR and the resources needed to carry out their tasks. The …
29 June 2021
… and their rights in accordance with Article 13 of the GDPR. Additionally, labels and signs indicating the video … Data Protection and the Processing of Personal Data and the GDPR. Moreover, the data subjects affected by these … personal data merits specific protection according to the GDPR. It was also regarded that employers have a …
29 March 2021
… infringements of the General Data Protection Regulation (GDPR) were imposed on the National Public Health Centre … of Articles 5, 13, 24, 32, 35 and Article 58(2)(f) of the GDPR, and a fine of EUR 3,000 was imposed on the Company for infringements of Articles 5, 13, 24, 32 and 35 of the GDPR. In spring 2020, the DPA started monitoring activities …
20 January 2023
… (Article 35) Decision: Infringement of the GDPR, Administrative fine, Ban on processing, Order to … limitation principles; infringement of Articles 6 and 7 GDPR; failure to provide the information set out by Articles … to bring processing operations into compliance with the GDPR as for the transparency-related infringements - by …
6 December 2024
… on the controller for unlawful processing (Art. 5 and 6.1 GDPR). The controller was reprimanded for the shortcomings … and was ordered to correct its unlawful practices (Art. 13 GDPR). In addition, the DPA instructed the controller to … so that only necessary personal data is processed (Art. 25 GDPR). For further information: National press release: …
14 July 2022
… This will help Supervisory Authorities (SAs) enforce the GDPR more efficiently, ultimately benefiting and empowering … to the interpretation, application or enforcement of the GDPR; a case related to the intersection of data protection … the scope of the EDPB strategy; a case where the GDPR implies that a high risk can be assumed, such …
12 February 2025
… up a quick response team. EDPB Chair Anu Talus said: “The GDPR is a legal framework that promotes responsible innovation. The GDPR has been designed to maintain high data protection … International Standard for Data Protection (ISDP) with the GDPR. The Anti-doping Code and Standards should hold the …
7 October 2019
… Summary Final Decision Art 60 Complaint Infringement of the GDPR EDPBI:EE:OSS:D:2019:55 Background information Date of … Right to erasure (Article 17) Decision: Infringement of the GDPR, issue of reprimand in accordance with Article 58(2)(b) GDPR Key words: Right to object, Right to erasure, …
4 November 2024
… failed to demonstrate compliance with Article 6 of the GDPR in accordance with the accountability principle. … decided that there is no legal basis under Article 6 of the GDPR for the broadcast of the CCTV footage of employees … of the national Data Protection Act and Article 13 of the GDPR since the company also failed to inform data subjects …
3 July 2020
… due to the complainant’s letter not mentioning the words ‘GDPR’, ‘CNIL’, ‘data protection’ or ‘personal data’. The … request, despite the time limits set out under Article 12 GDPR.Decision The LSA will issue reprimands to the controller in accordance with Article 58(2)(b) GDPR. Further, in accordance with Articles 12 and 24 GDPR, …
14 July 2022
… of the rights in the Proposal is not consistent with the GDPR and there is a substantial risk of legal uncertainty … of the different rights between the Proposal and the GDPR.” EDPS Supervisor Wojciech Wiewiórowski said : “ Health … the Commission’s efforts to align the Proposal with the GDPR provisions when personal data is involved, they note …
22 November 2019
… Privacy Shield Guidelines on the Territorial Scope of the GDPR (version following public consultation) Guidelines on … Privacy Shield Guidelines on the Territorial Scope of the GDPR (version following public consultation) Guidelines on …