27 June 2023
… lawful ground for all processing operations (Article 6 (1) GDPR) Failure to comply with the obligation to process … fairly and in a transparent manner (Article 5(1)(a) GDPR) Decision No provision that clearly stipulates the … data unlawfully and against Articles 5(1)(a) and 6(1) GDPR, as the agency could not rely on any legal basis. …
29 August 2019
… of Article 56.1 of the General Data Protection Regulation (GDPR). The complaint, submitted by , was dealing with the … to use all of the powers conferred to it under the GDPR and the law of January 6th, 1978 as run ended. …
20 February 2019
… of Article 32 of the General Data Protection Regulation (GDPR) and, in terms of Article 21 of the Data Protection Act … account the circumstances set out under Article 83.2 of the GDPR. The temporary ban imposed on the Authority’s portal … of Article 32 of the General Data Protection Regulation (GDPR) and, in terms of Article 21 of the Data Protection Act …
… According to the General Data Protection Regulation (GDPR), public authorities and certain businesses are obliged … DPOs have the role and position required by Articles 37-39 GDPR and the resources needed to carry out their tasks. The … According to the General Data Protection Regulation (GDPR), public authorities and certain businesses are obliged …
21 December 2018
… register.Findings According to recital 47 and Art 6.1.f GDPR legitimate interest of the controller or of a third … were filed before the 25 May 2018. Articles 13 and 14 GDPR were thus not yet applicable. However, under the GDPR the data subjects are to be informed from which source …
17 October 2023
… In its decision, IMY states that H&M has violated the GDPR by not ceasing to handle the complainants' personal … 28 500 EUR) against the company for violations of the GDPR. For further information: H&M har gjort det onödigt … In its decision, IMY states that H&M has violated the GDPR by not ceasing to handle the complainants' personal …
22 November 2021
… data subject (Article 34(1)) Decision: Infringement of the GDPR, fine imposed, order to comply Key words: Obligation to … — it did not meet the requirements set out in the GDPR. Key Finding In the course of the case, it turned out … by the breach in the manner set out in Art. 34(2) of the GDPR. For further information: …
16 September 2021
… “Luigi Bocconi” University in Milan Legal Reference: GDPR: Article 5 para. 1, letters a), c) and e) (lawfulness, … category data) Decision: Finding of infringements of GDPR; imposition of administrative fine and corrective … data without a lawful legal basis pursuant to Article 9 GDPR. The students’ consent could not be relied upon by the …
20 March 2019
… its websites, in accordance with Articles 13 and 14 of the GDPR, by the publication of a document entitled ‘General Data Protection Regulation (GDPR)’. The LSA noted controller’s commitment in pursuing a … appropriately and demonstrated compliance with the GDPR, the LSA together with the CSAs agreed to proceed to …
7 April 2022
… is also the cornerstone of effective enforcement under the GDPR and effective cooperation among SAs. Furthermore, the … EDPB is concerned about the proposals’ alignment with the GDPR and strict CJEU case law. In particular, the EDPB … free from external influence” in accordance with Art. 52(2) GDPR. In addition, the EDPB states that the legislative …
3 August 2023
… a dispute resolution decision on the basis of Art. 65 GDPR concerning a draft decision of the Irish Data … ensures the correct and consistent application of the GDPR by the national DPAs. The Irish DPA issued the draft … a dispute resolution decision on the basis of Art. 65 GDPR concerning a draft decision of the Irish Data …
18 May 2020
… in the meaning of the General Data Protection Regulation (GDPR). They confirmed that the head office in Norway makes … the doctor’s opinion as covered by the right of access in GDPR art. 15 and about their routines for handling of access …
1 February 2021
… and fathers-to-be in Belgium, for various breaches of the GDPR. Family Service is a marketing company that … of 50,000 euro, and ordered the company to comply with the GDPR. Given the size of the company, this is a considerable … model of Family Service is clearly not compliant with the GDPR. To read the decision (in Dutch) click here . For …
21 August 2019
… consent was not legally valid and Articles 5(1)(a), 6 and 7 GDPR were violated. Furthermore, the LI SA found that the controller did not comply with Article 15 GDPR as it did not appropriately provide the data subject … the storage period. 2 In addition, violations of Article 32 GDPR were also identified: first, the technical and …
22 July 2021
… Urgent Binding Decision on the request under Article 66(2) GDPR from the Hamburg Supervisory Authority for ordering the … Urgent Binding Decision on the request under Article 66(2) GDPR from the Hamburg Supervisory Authority for ordering the …
21 May 2019
… the provisions of the General Data Protection Regulation (GDPR) had the opportunity to receive a confirmation of the … that the company breached the requirements of the GDPR as it improperly processed personal data in screenshots … days instead of 10 minutes. According to Article 5 of the GDPR, the company shall be responsible for and be able to …
13 April 2023
… a dispute resolution decision on the basis of Art. 65 GDPR concerning a draft decision of the IE DPA on the … in ensuring the correct and consistent application of the GDPR by the national Data Protection Authorities. As no … a dispute resolution decision on the basis of Art. 65 GDPR concerning a draft decision of the IE DPA on the …
7 June 2023
… a legally binding decision on the basis of Art. 65(1)(a) GDPR. Following public consultation, the guidelines were … of the EDPB Guidelines on the application of Art. 60 GDPR and changes to the EDPB Rules of Procedure. In … a legally binding decision on the basis of Art. 65(1)(a) GDPR. Following public consultation, the guidelines were …
28 October 2021
… Trasporto Passeggeri Emilia Romagna S.p.A. Legal Reference: GDPR: Article 5 (Principles applying to personal data … remote surveillance) Decision: Finding of infringements of GDPR and Italian law, imposition of administrative fine Key … out in this respect by national law pursuant to Article 88 GDPR – namely, either an ad-hoc agreement with trade unions …
13 May 2021
… and contravened Article 6(1) and Article 5(1)(a) of the GDPR. The recordings had already been handed over to the … previous legislation The infringement occurred before the GDPR went into effect on 20 July 2018. The fine was … and contravened Article 6(1) and Article 5(1)(a) of the GDPR. The recordings had already been handed over to the …