1 March 2023
… (Article 12(1), Article 13) Decision: Infringement of the GDPR, Order to comply, Administrative fine Key words: … data is collected through the Websites. The practical GDPR compliance of the cookie consent management system … the Websites if such processing was made compliant with the GDPR. An administrative fine was also issued in HUF equal to …
27 June 2023
… lawful ground for all processing operations (Article 6 (1) GDPR) Failure to comply with the obligation to process … fairly and in a transparent manner (Article 5(1)(a) GDPR) Decision No provision that clearly stipulates the … data unlawfully and against Articles 5(1)(a) and 6(1) GDPR, as the agency could not rely on any legal basis. …
20 October 2025
… decisions under the General Data Protection Regulation (GDPR) and the Law Enforcement Directive (LED) until December … opinions, requested by the Commission as per Art. 70(1) (s) GDPR and Art. 51(1) (g) LED, address the proposed six-year … from Europe to the UK.” EDPB Chair, Anu Talus About the GDPR opinion According to the Board, most of the changes …
… According to the General Data Protection Regulation (GDPR), public authorities and certain businesses are obliged … DPOs have the role and position required by Articles 37-39 GDPR and the resources needed to carry out their tasks. The … According to the General Data Protection Regulation (GDPR), public authorities and certain businesses are obliged …
20 February 2019
… of Article 32 of the General Data Protection Regulation (GDPR) and, in terms of Article 21 of the Data Protection Act … account the circumstances set out under Article 83.2 of the GDPR. The temporary ban imposed on the Authority’s portal … of Article 32 of the General Data Protection Regulation (GDPR) and, in terms of Article 21 of the Data Protection Act …
17 October 2023
… In its decision, IMY states that H&M has violated the GDPR by not ceasing to handle the complainants' personal … 28 500 EUR) against the company for violations of the GDPR. For further information: H&M har gjort det onödigt … In its decision, IMY states that H&M has violated the GDPR by not ceasing to handle the complainants' personal …
22 November 2021
… data subject (Article 34(1)) Decision: Infringement of the GDPR, fine imposed, order to comply Key words: Obligation to … — it did not meet the requirements set out in the GDPR. Key Finding In the course of the case, it turned out … by the breach in the manner set out in Art. 34(2) of the GDPR. For further information: …
16 September 2021
… “Luigi Bocconi” University in Milan Legal Reference: GDPR: Article 5 para. 1, letters a), c) and e) (lawfulness, … category data) Decision: Finding of infringements of GDPR; imposition of administrative fine and corrective … data without a lawful legal basis pursuant to Article 9 GDPR. The students’ consent could not be relied upon by the …
3 August 2023
… a dispute resolution decision on the basis of Art. 65 GDPR concerning a draft decision of the Irish Data … ensures the correct and consistent application of the GDPR by the national DPAs. The Irish DPA issued the draft … a dispute resolution decision on the basis of Art. 65 GDPR concerning a draft decision of the Irish Data …
7 April 2022
… is also the cornerstone of effective enforcement under the GDPR and effective cooperation among SAs. Furthermore, the … EDPB is concerned about the proposals’ alignment with the GDPR and strict CJEU case law. In particular, the EDPB … free from external influence” in accordance with Art. 52(2) GDPR. In addition, the EDPB states that the legislative …
19 January 2026
… on the scope of the LED, notably its boundary with the GDPR, and to address more thoroughly the challenges posed by … essentially equivalent to the one provided by the GDPR. The new recommendations build upon the agreements … BCR-P applications since the entry into application of the GDPR, as well as upon the work carried out in the context of …
1 February 2021
… and fathers-to-be in Belgium, for various breaches of the GDPR. Family Service is a marketing company that … of 50,000 euro, and ordered the company to comply with the GDPR. Given the size of the company, this is a considerable … model of Family Service is clearly not compliant with the GDPR. To read the decision (in Dutch) click here . For …
18 February 2026
… Framework (CEF) action on the right to be forgotten (Art.17 GDPR) . The Board selected this topic as it is one of the most frequently exercised GDPR rights and one about which DPAs frequently receive … In line with the Helsinki Statement’s objectives of making GDPR compliance easier and ensuring consistent …
22 July 2021
… Urgent Binding Decision on the request under Article 66(2) GDPR from the Hamburg Supervisory Authority for ordering the … Urgent Binding Decision on the request under Article 66(2) GDPR from the Hamburg Supervisory Authority for ordering the …
… Processing of Personal Data pursuant to Art. 42 GDPR (‘GDPR – information privacy standard’), Version 0.9.7 Opinion … IT-supported processing of Personal Data pursuant to art 42 GDPR (‘GDPR – information privacy standard’)” presented 2 …
21 May 2019
… the provisions of the General Data Protection Regulation (GDPR) had the opportunity to receive a confirmation of the … that the company breached the requirements of the GDPR as it improperly processed personal data in screenshots … days instead of 10 minutes. According to Article 5 of the GDPR, the company shall be responsible for and be able to …
13 April 2023
… a dispute resolution decision on the basis of Art. 65 GDPR concerning a draft decision of the IE DPA on the … in ensuring the correct and consistent application of the GDPR by the national Data Protection Authorities. As no … a dispute resolution decision on the basis of Art. 65 GDPR concerning a draft decision of the IE DPA on the …
7 June 2023
… a legally binding decision on the basis of Art. 65(1)(a) GDPR. Following public consultation, the guidelines were … of the EDPB Guidelines on the application of Art. 60 GDPR and changes to the EDPB Rules of Procedure. In … a legally binding decision on the basis of Art. 65(1)(a) GDPR. Following public consultation, the guidelines were …
28 October 2021
… Trasporto Passeggeri Emilia Romagna S.p.A. Legal Reference: GDPR: Article 5 (Principles applying to personal data … remote surveillance) Decision: Finding of infringements of GDPR and Italian law, imposition of administrative fine Key … out in this respect by national law pursuant to Article 88 GDPR – namely, either an ad-hoc agreement with trade unions …
13 May 2021
… and contravened Article 6(1) and Article 5(1)(a) of the GDPR. The recordings had already been handed over to the … previous legislation The infringement occurred before the GDPR went into effect on 20 July 2018. The fine was … and contravened Article 6(1) and Article 5(1)(a) of the GDPR. The recordings had already been handed over to the …