22 November 2021
… Millennium fined for failure to notify the breach and the data subjects about the incident 22 November 2021 Poland … S.A. Legal Reference: Notification of a personal data breach to the supervisory authority (Article 33(1)), … of the Decision Origin of the case The Personal Data Protection Office (UODO) learnt about the personal data …
12 February 2021
… 12 February 2021 Sweden The Swedish Authority for Privacy Protection finds that the Swedish Police Authority has processed personal data in breach of the Swedish Criminal Data Act when using Clearview AI to identify individuals. … that the Swedish Police Authority has processed personal data in breach of the Swedish Criminal Data Act when using …
3 September 2019
… and modalities for the exercise of the rights of the data subject) Article 13 (Information to be provided where personal data are collected from the data subject) Article 14 (Information to be provided where … and the link to a portal for en- quiries from data subjects are now also integrated as a contact option. …
24 July 2020
… 17 (Right to erasure (‘right to be forgotten’)) Keywords Data subject rights Right to erasure Outcome Reprimand … reprimand Noisli Ltd. for an infringement of the General Data Protection Regulation (GDPR). Justification: Our decision is … 17) Decision: Reprimand to the Controller Key words: Data subjects right; Right to erasure Summary of the …
9 June 2021
… privacy of sick employees 9 June 2021 Netherlands The Dutch Data Protection Authority (DPA) has imposed a fine of €15,000 on … about such things. That is for the in-house medical officer or the safety, health and welfare services to … The Dutch Data Protection Authority (DPA) has imposed a fine of …
13 September 2019
… be forgotten’)) Keywords Electronic communications Payment data Right to erasure Outcome No violation Summary 60.4KB … the complaint addressed to the CNIL by the Spanish data protection authority, m accordance with the provisions of … words: Right to erasure, Electronic communications, Payment dataSummary of the DecisionOrigin of the case The …
13 May 2021
… DPA: Dragefossen AS fined 13 May 2021 Norway The Norwegian Data Protection Agency has fined the power company Dragefossen AS … on YouTube and the company’s own website. Up until the Data Protection Authority contacted the company, it was … The Norwegian Data Protection Agency has fined the power company …
18 May 2020
… SE Main legal reference Article 15 (Right of access by the data subject) Article 16 (Right to rectification) Keywords … Sentrum Tollbugt 3 22 39 69 00 22 42 23 50 974 761 467 www.datatilsynet.no 0105 OSLO Unntatt offentlighet: Offl §13 jfr … We refer to your complaint recieved by the Danish Data Protection Authority (DPA) on February 10th 2019 against …
5 August 2020
… Main legal reference Article 33 (Notification of a personal data breach to the supervisory authority) Article 34 (Communication of a personal data breach to the data subject) Keywords Personal data breach Outcome No … DD 129284 FD 142719 Final Decision 1. Facts concerning the data breach - Controller: Applause GmbH - Incident: …
3 January 2024
… 2023 Cross-border case Hungarian National Authority for Data Protection and Freedom of Information (Hungarian Supervisory Authority, SA) and CSAs: Office for Personal Data Protection of the Slovak Republic (Slovak Supervisory … 2023 Cross-border case Hungarian National Authority for Data Protection and Freedom of Information (Hungarian …
31 January 2019
… to a) explore the level of compliance with the General Data Protection Regulation (GDPR) -six months after its entry … a sufficient degree, more than 70%, of Data Protection Officers’ designation was noted in the private sector. On … to a) explore the level of compliance with the General Data Protection Regulation (GDPR) -six months after its …
16 May 2023
… Article 5 (Principles relating to processing of personal data), Article 24 (Responsibility of the controller), Article 25 (Data protection by design and by default), Article 32 (Security … Article 5 (Principles relating to processing of personal data), Article 24 (Responsibility of the controller), …
5 August 2019
… Article 13 (Information to be provided where personal data are collected from the data subject) Keywords Data subject rights Outcome No violation Summary 59.8KB … file number CDP/IMI/LSA/6/2019) received from the Spanish Data Protection Agency (Agencia Espanola de Proteccion de …
27 January 2020
… and modalities for the exercise of the rights of the data subject) Article 17 (Right to erasure (‘right to be … that took place between the CNIL's services and the Data Protection Officer of in the framework of the examination of … The complainant requested to have his account and personal data deleted and objected to the reception of direct …
26 July 2019
… operations which are subject to the requirement for a Data Protection Impact Assessment under Article 35(4) of the General Data Protection Regulation (EU) 2016/679 (GDPR) Decision … 1 The list of types of personal data processing operations, for which carrying out a Data …
7 May 2020
… the complainant had requested the deletion of his personal data. The deletion of data was confirmed to him by e-mail. This e-mail was not … on is not available at Care.com Europe GmbH. Thus, no data protection violation could be determined. Furthermore, it … the complainant requested deletion of his personal data. The complainant received confirmation that his data …
18 June 2020
… Article 5 (Principles relating to processing of personal data) Article 32 (Security of processing) Article 33 (Notification of a personal data breach to the supervisory authority) Article 34 (Communication of a personal data breach to the data subject) Keywords Data subject …
5 January 2021
… based in Warsaw, which, as the controller of personal data, did not meet the obligation of cooperation with the … is closely related to obtaining and processing of personal data. The personal data protection regulations and the obligations they impose on … based in Warsaw, which, as the controller of personal data, did not meet the obligation of cooperation with the …
20 February 2020
… and modalities for the exercise of the rights of the data subject) Article 21 (Right to object) Keywords … that took place between the CNIL's services and the Data Protection Officer (hereinafter "DPO") of in the framework … and modalities for the exercise of the rights of the data subject (Article 12) Right to object (Article 21) …
13 January 2021
… threat and remove it led the company ID Finance Poland to data loss. Therefore, the President of the Personal Data Protection Office (UODO) found that the company had not … threat and remove it led the company ID Finance Poland to data loss. Therefore, the President of the Personal Data …