14 November 2019
… guidelines aim to provide a common interpretation of the GDPR for EEA Data Protection Authorities when assessing … the territorial scope of the legal framework, as per Art. 3 GDPR. The Guidelines provide further clarification on the application of the GDPR in various situations, for example, where the data …
2 June 2021
… EDPB. In 2020, the EDPB issued 32 Opinions under Art. 64 GDPR. Most of these Opinions concern draft accreditation … first dispute resolution decision on the basis of Art. 65 GDPR. The binding decision addressed the dispute that arose … reasoned objections expressed by a few Concerned SAs. The GDPR requires the EEA SAs to cooperate closely to ensure the …
19 March 2019
… constituted violations of both art. 5(1)f and art. 32 GDPR. Consequently the supervisory authority issued an … that the data security was inadequate. - In the GDPR, children are defined as a particularly vulnerable … trust the public sector, says director Bjørn Erik Thon. The GDPR stipulates that administrative fines shall be …
27 September 2021
… for the Republic of Korea. The EDPB focused on general GDPR aspects and access by public authorities to personal … of data protection essentially equivalent to that of the GDPR. Such as, for example, the adoption of notifications by … authority (PIPC), which aim to fill the gaps between the GDPR and the Korean data protection framework, like the …
27 September 2021
… was established in accordance with Art. 70 (1) (u) GDPR and aims to promote cooperation, information sharing … was established in accordance with Art. 70 (1) (u) GDPR and aims to promote cooperation, information sharing …
27 January 2023
… Data Protection Day, we invite you to take a look back at GDPR enforcement over the last few years and explore how the … Data Protection Day, we invite you to take a look back at GDPR enforcement over the last few years and explore how the …
26 August 2024
… as a company in Belgium. Based on Article 60.8 of GDPR, the decision to reject the complaint was made by the … of Articles 12.1, 12.2, 12.3, 12.4, 17, 24 and 25.1 GDPR as stated by the complainant, as it was shown by the … data erasure. The Belgian SA found violations of the GDPR outside the scope of the complaint, which will be …
10 June 2022
… Insurance Against Occupational Accidents. Legal Reference: GDPR: Art. 5.1, letters a) and f) (lawfulness, fairness and … personal data). Decision: finding of infringements of the GDPR (imposition of administrative fine); finding of data … users’) personal data including health data (Art. 4.10 GDPR), which amounted to the unauthorised disclosure of …
27 June 2023
… lawful ground for all processing operations (Article 6 (1) GDPR) Failure to comply with the obligation to process … fairly and in a transparent manner (Article 5(1)(a) GDPR) Decision No provision that clearly stipulates the … data unlawfully and against Articles 5(1)(a) and 6(1) GDPR, as the company could not rely on any legal basis. …
7 October 2019
… Summary Final Decision Art 60 Complaint Infringement of the GDPR EDPBI:EE:OSS:D:2019:55 Background information Date of … Right to erasure (Article 17) Decision: Infringement of the GDPR, issue of reprimand in accordance with Article 58(2)(b) GDPR Key words: Right to object, Right to erasure, …
12 January 2022
… consultation) Opinion 39/2021 on whether Article 58(2)(g) GDPR could serve as a legal basis for a supervisory … consultation) Opinion 39/2021 on whether Article 58(2)(g) GDPR could serve as a legal basis for a supervisory …
14 March 2018
… their rights and obligations. We are also empowered by the GDPR to make binding decisions towards national supervisory … their rights and obligations. We are also empowered by the GDPR to make binding decisions towards national supervisory …
3 February 2022
… Regulation (EU) 611/2013 Decision: Infringement of the GDPR, Fines imposed Key words: GDPR, Data breach, Security, Data protection impact … ΟΤΕ S.A. was found to have infringed Article 32 of the GDPR due to inadequate security measures taken in relation …
23 July 2020
… UK SA will no longer qualify as a competent SA under the GDPR at the end of the transition period, the approval decisions of the UK SA taken under the GDPR will no longer have legal effect in the EEA. In … of the EDPB. Any BCR approved by the UK SA under the GDPR will require the new EEA BCR Lead SA to issue a new …
20 November 2024
… and processing by COSMOSPACE (Article 5.1.c of the GDPR) Failure to comply with the obligation to retain data … limited to the intended purpose (Article 5.1.e of the GDPR) Failure to comply with the obligation to obtain prior … special categories of personal data (Article 9 of the GDPR) Failure to comply with the obligation to obtain …
3 July 2020
… due to the complainant’s letter not mentioning the words ‘GDPR’, ‘CNIL’, ‘data protection’ or ‘personal data’. The … request, despite the time limits set out under Article 12 GDPR.Decision The LSA will issue reprimands to the controller in accordance with Article 58(2)(b) GDPR. Further, in accordance with Articles 12 and 24 GDPR, …
11 March 2020
… 7 million euro) on Google for failure to comply with the GDPR. Google as a search engine operator has not fulfilled … against Google. – The General Data Protection Regulation, GDPR, increases the level of responsibility for … or superfluous. This right was strengthened with the GDPR entering into force 25th May 2018. The right is however …
2 July 2019
… access to his personal data in accordance with Article 15 GDPR. The controller attempted to provide the complainant … months after the deadline established under Article 12 (3) GDPR.Findings The LSA determined that the controller infringed Article 12(3) GDPR by exceeding the deadline to answer the complainant’s …
4 October 2022
… Data Protection Act), Article 5.1(c) and 6.1(f) of the GDPR Decision: Order to comply Key words: GPS tracking … processing the personal data pursuant to Article 6 of the GDPR. Decision The Slovenian SA was assessing whether … was lawful in accordance to Article 6.1 (f) of the GDPR – legitimate interests. Slovenian SA confirmed that …
28 November 2024
… took place, but in his opinion there was no breach of the GDPR provisions. However, the proceeding conducted by the … the DPA revealed a breach of a number of provisions of the GDPR, including those relating to personal data security. … € for infringement of Articles 24, 25, 32, 33 and 34 of the GDPR. In the decision, the President of the Personal Data …