Search results | European Data Protection Board

State Commissioner for Data Protection in Lower Saxony imposes € 10.4 million fine against notebooksbilliger.de
26 January 2021
News
… Lower Saxony under the General Data Protection Regulation (GDPR). The GDPR enables supervisory authorities to impose fines of up … Lower Saxony under the General Data Protection Regulation (GDPR). The GDPR enables supervisory authorities to impose fines of up …
Polish DPA Fines ENEA S.A.: A data breach must be notified to the supervisory authority
11 January 2021
News
… not complied with the obligation under Article 33 of the GDPR. When determining the amount of the administrative … DPA reminds that pursuant to Article 33 (1) and (3) of the GDPR, in the case of a personal data breach, the controller … not complied with the obligation under Article 33 of the GDPR. When determining the amount of the administrative …
Polish DPA: A data breach must be notified to the supervisory authority
11 January 2021
News
… not complied with the obligation under Article 33 of the GDPR. When determining the amount of the administrative … DPA reminds that pursuant to Article 33 (1) and (3) of the GDPR, in the case of a personal data breach, the controller … not complied with the obligation under Article 33 of the GDPR. When determining the amount of the administrative …
Comunidade Intermunicipal do Tâmega e Sousa - Regulamento n.º 400/2022
19 January 2022
Decision by the SA
… Portugal Type Code for Controllers/Processors subject to GDPR Scope National Monitoring Body N/A …
Swedish DPA: Investigation of 1177-incident finalized
11 June 2021
News
… calling 1177 with information according to the rules in the GDPR and the Patient Records Act, for example how their … and medical care laid down by law. This is a breach of the GDPR’s principle of lawfulness. Further to the … on behalf of Medhelp. The Data Protection Regulation, the GDPR, lays down obligations also for processors, i.e. …
Data Protection Code of Conduct for Cloud Infrastructure Service Providers
3 June 2021
Decision by the SA
… France Type Code for Controllers/Processors subject to GDPR Scope Transnational Opinion/Guideline References … 2021_cispe_cloud_iaas_data_protection_code_of_conduct_-_gdpr_compliance.pdf 1.4MB Íoslódáil file 1 …
Spanish Data Protection Authority (AEPD) imposes fine on company for not complying with advertisement exclusion
18 August 2020
News
… to processing for marketing purposes under Article 21 GDPR. However, the company did not comply with its … to processing for marketing purposes under Article 21 GDPR. However, the company did not comply with its …
The Norwegian SA issues fine and order company to establish procedures after unlawful credit rating
17 December 2021
News
… Legal basis (Article 6) Decision: Infringement of the GDPR, Order to establish procedures Key words: Credit Rating … Legal basis (Article 6) Decision: Infringement of the GDPR, Order to establish procedures Key words: Credit Rating …
Nokia
14 April 2025
… of the Nokia Group SA Decision 167KB English Íoslódáil Pre-GDPR No …
AVATURE Group
24 July 2024
… AVATURE Group ES SA decision 281.7KB English Íoslódáil Pre-GDPR No …
Jotun
20 August 2020
… Rules of Jotun NO SA Final decision 521.5KB Íoslódáil Pre-GDPR No …
The President of the Personal Data Protection Office imposes a fine in cross-border proceedings
10 July 2020
News
… it and does not fulfil the obligation – provided for in the GDPR – to provide it with access to personal data and other … of the personal data protection system specified by the GDPR), the intentional nature of the breach and the … it and does not fulfil the obligation – provided for in the GDPR – to provide it with access to personal data and other …
Join the stakeholder event on EDPB opinion on ‘AI models’
11 October 2024
News
… on issues relating to the request for an Art. 64(2) GDPR opinion on artificial intelligence ("AI") submitted to … on issues relating to the request for an Art. 64(2) GDPR opinion on artificial intelligence ("AI") submitted to …
EDPB adopts Guidelines on Right of Access and letter on cookie consent
19 January 2022
Press releases
… to support controllers to answer access requests in a GDPR compliant manner.” The Guidelines will be subject to … to support controllers to answer access requests in a GDPR compliant manner.” The Guidelines will be subject to …
Ramboll Group
20 January 2023
Binding decision of the Board (Art. 65)
… Controller Binding Corporate Rules of the Ramboll Group Pre-GDPR No …
Tetra Pak
20 August 2020
… Pak SE SA Final decision 354.8KB English Íoslódáil Pre-GDPR No …
Coloplast Group
17 December 2020
… Group DK SA Final decision 125.5KB English Íoslódáil Pre-GDPR No …
Norwegian SA issues administrative fine to the University of Agder
5 November 2024
News
… EUR 12 700 on the University of Agder for violation of the GDPR. The University had not taken appropriate measures to … EUR 12 700 on the University of Agder for violation of the GDPR. The University had not taken appropriate measures to …
Code de conduite RGPD - Secteur du Travail Intérimaire Grand-Duché de Luxembourg
13 August 2025
Other
… Luxembourg Type Code for Controllers/Processors subject to GDPR Scope National Monitoring Body ESCEM ASBL Code de …
APDL - Código de Conduta para o Tratamento de Dados Pessoais
22 March 2022
Decision by the SA
… Portugal Type Code for Controllers/Processors subject to GDPR Scope National Monitoring Body N/A …