22 November 2021
… data subject (Article 34(1)) Decision: Infringement of the GDPR, fine imposed, order to comply Key words: Obligation to … — it did not meet the requirements set out in the GDPR. Key Finding In the course of the case, it turned out … by the breach in the manner set out in Art. 34(2) of the GDPR. For further information: …
7 April 2022
… is also the cornerstone of effective enforcement under the GDPR and effective cooperation among SAs. Furthermore, the … EDPB is concerned about the proposals’ alignment with the GDPR and strict CJEU case law. In particular, the EDPB … free from external influence” in accordance with Art. 52(2) GDPR. In addition, the EDPB states that the legislative …
3 July 2020
… due to the complainant’s letter not mentioning the words ‘GDPR’, ‘CNIL’, ‘data protection’ or ‘personal data’. The … request, despite the time limits set out under Article 12 GDPR.Decision The LSA will issue reprimands to the controller in accordance with Article 58(2)(b) GDPR. Further, in accordance with Articles 12 and 24 GDPR, …
2 July 2019
… access to his personal data in accordance with Article 15 GDPR. The controller attempted to provide the complainant … months after the deadline established under Article 12 (3) GDPR.Findings The LSA determined that the controller infringed Article 12(3) GDPR by exceeding the deadline to answer the complainant’s …
21 April 2020
… of data subject rights. The guidelines state that the GDPR contains several provisions for the processing of … to consent and to the respective national legislations. The GDPR foresees the possibility to process certain special … hope to produce results as quickly as possible. The GDPR does not stand in the way of scientific research, but …
2 September 2020
… the processing of personal data to the provisions of the GDPR by discontinuing making available on the GEOPORTAL2 … with them. In accordance with Article 5(1)(a) of the GDPR, personal data must be processed lawfully, fairly and … where at least one of the conditions indicated in Art. 6 GDPR is met. In the course of the proceedings, GGK did not …
28 October 2021
… Trasporto Passeggeri Emilia Romagna S.p.A. Legal Reference: GDPR: Article 5 (Principles applying to personal data … remote surveillance) Decision: Finding of infringements of GDPR and Italian law, imposition of administrative fine Key … out in this respect by national law pursuant to Article 88 GDPR – namely, either an ad-hoc agreement with trade unions …
26 January 2023
… Legal references: The right of access to data (Art. 15 of GDPR) Decision: The complaint was upheld Summary of the … processed in accordance with the procedure laid down in the GDPR, and during the conversations requested, only those … to be an improper implementation of Article 15(3) of the GDPR. For further information: Išnagrinėjus skundą …
25 March 2019
… 4x35 for a total of DKK 1. 2 million for a breach of the GDPR. Taxa 4x35 could be fined for failure to delete … Agency proposes a fine in accordance with the rules of the GDPR. 8.873.333 taxi trips In the autumn of 2018, the Danish … only because the company’s system makes compliance with the GDPR burdensome. “We have opted for a fine in this case. …
18 October 2021
… in the public interest in accordance with Article 89(1) GDPR and if the erasure is likely to render impossible or … of the objectives of that processing (Article 17(3)(d) GDPR). The SA emphasised, that the above mentioned act … be considered as appropriate safeguards according to 89(1) GDPR. The SA decided that the Batismal Register is an …
18 December 2019
… rights. The European General Data Protection Regulation (GDPR) gives us the opportunity to decisively punish … procedure to be in breach of Article 32 of the GDPR which obliges the company to take appropriate technical … comply with its legal requirement under Article 37 of the GDPR to appoint an internal data protection officer. When …
20 March 2019
… its websites, in accordance with Articles 13 and 14 of the GDPR, by the publication of a document entitled ‘General Data Protection Regulation (GDPR)’. The LSA noted controller’s commitment in pursuing a … appropriately and demonstrated compliance with the GDPR, the LSA together with the CSAs agreed to proceed to …
5 November 2024
… the Irish Data Protection Authority under Art. 64 (2) GDPR. EDPB Chair Anu Talus said: “During the stakeholder … the Irish Data Protection Authority under Art. 64 (2) GDPR. EDPB Chair Anu Talus said: “During the stakeholder …
22 June 2021
… for violation of the General Data Protection Regulation (GDPR). This case concerns insufficient risk assessment and … that the bank did not meet the requirements of the GDPR for risk assessment and appropriate technical measures … risk assessment and testing as required by the law. The GDPR requires that the data controller carry out risk …
… particular the record-keeping obligation under Art. 30(5) GDPR Statement 2/2025 on the implementation of the PNR … down additional procedural rules for the enforcement of the GDPR Statement 3/2024 on data protection authorities’ role … for clarifications on the consistent application of the GDPR, focusing on health research Letter to the Council of …
29 August 2019
… of Article 56.1 of the General Data Protection Regulation (GDPR). The complaint, submitted by , was dealing with the … to use all of the powers conferred to it under the GDPR and the law of January 6th, 1978 as run ended. …
3 November 2021
… of processing (Article 32) Decision: Infringement of the GDPR, Order to comply Key words: Loss of … a violation of Article 5.1.f) and Article 32 of the GDPR, for which the telephone company is responsible. The … of processing (Article 32) Decision: Infringement of the GDPR, Order to comply Key words: Loss of …
1 December 2019
… been made. This is, however, mandatory under Art. 37 (7) GDPR. Violations of this requirement are subject to a fine in accordance with Art. 83 Para. 4 lit. a) GDPR. The fine may sound low at first sight. However, … been made. This is, however, mandatory under Art. 37 (7) GDPR. Violations of this requirement are subject to a fine …
21 August 2019
… consent was not legally valid and Articles 5(1)(a), 6 and 7 GDPR were violated. Furthermore, the LI SA found that the controller did not comply with Article 15 GDPR as it did not appropriately provide the data subject … the storage period. 2 In addition, violations of Article 32 GDPR were also identified: first, the technical and …
21 October 2020
… Data Protection Regulation (hereinafter referred to as the “GDPR”). The fine was imposed for infringements of Articles 5(1)(d) and 5(1)(f) of the GDPR, i.e. a failure to implement appropriate technical and … erased or rectified without delay (Article 5(1)(d) of the GDPR), and the principle of integrity and confidentiality …