18 December 2019
… rights. The European General Data Protection Regulation (GDPR) gives us the opportunity to decisively punish … procedure to be in breach of Article 32 of the GDPR which obliges the company to take appropriate technical … comply with its legal requirement under Article 37 of the GDPR to appoint an internal data protection officer. When …
28 January 2025
… bendrinimu ir prisijungimu paliekate skaitmeninę pėdsaką. GDPR užtikrina, kad jūsų duomenys gali būti naudojami tik … bendrinimu ir prisijungimu paliekate skaitmeninę pėdsaką. GDPR užtikrina, kad jūsų duomenys gali būti naudojami tik …
5 November 2024
… the Irish Data Protection Authority under Art. 64 (2) GDPR. EDPB Chair Anu Talus said: “During the stakeholder … the Irish Data Protection Authority under Art. 64 (2) GDPR. EDPB Chair Anu Talus said: “During the stakeholder …
22 June 2021
… for violation of the General Data Protection Regulation (GDPR). This case concerns insufficient risk assessment and … that the bank did not meet the requirements of the GDPR for risk assessment and appropriate technical measures … risk assessment and testing as required by the law. The GDPR requires that the data controller carry out risk …
28 November 2024
… was inconsistent with the applicable provisions of the GDPR, due to an incorrectly conducted risk analysis, which … such as a risk register or confirmations of monitoring of GDPR procedures. However, the rules for using external data … for infringement of Articles 5, 24, 25 and 32 of the GDPR. What is more, appropriate organisational and technical …
… particular the record-keeping obligation under Art. 30(5) GDPR Statement 2/2025 on the implementation of the PNR … down additional procedural rules for the enforcement of the GDPR Statement 3/2024 on data protection authorities’ role … for clarifications on the consistent application of the GDPR, focusing on health research Letter to the Council of …
3 November 2021
… of processing (Article 32) Decision: Infringement of the GDPR, Order to comply Key words: Loss of … a violation of Article 5.1.f) and Article 32 of the GDPR, for which the telephone company is responsible. The … of processing (Article 32) Decision: Infringement of the GDPR, Order to comply Key words: Loss of …
1 December 2019
… been made. This is, however, mandatory under Art. 37 (7) GDPR. Violations of this requirement are subject to a fine in accordance with Art. 83 Para. 4 lit. a) GDPR. The fine may sound low at first sight. However, … been made. This is, however, mandatory under Art. 37 (7) GDPR. Violations of this requirement are subject to a fine …
21 October 2020
… Data Protection Regulation (hereinafter referred to as the “GDPR”). The fine was imposed for infringements of Articles 5(1)(d) and 5(1)(f) of the GDPR, i.e. a failure to implement appropriate technical and … erased or rectified without delay (Article 5(1)(d) of the GDPR), and the principle of integrity and confidentiality …
21 June 2023
… as follows: Article 5(1)(c) and Article 5(1)(e) of the GDPR The DPC found that Airbnb’s retention of a copy of the … of this complaint in accordance with Article 60(7) of the GDPR. In light of the infringements of Article 5(1)(c) and … a reprimand to Airbnb pursuant to Article 58(2)(b) of the GDPR. In addition, the DPC made the following orders against …
5 August 2020
… breach or to mitigate its adverse effects (Art. 33 (3) (d) GDPR) The passwords of the affected accounts have been … or public communi- cation (Art. 34(1) or Art. 34(3) (c) GDPR) The controller has notified all data subjects and … the incident occurred, e.g. encryption (Article 34 (3) (a) GDPR) No particular measures beyond the standard IT security …
7 September 2022
… of processing (Article 32) Decision: Infringement of the GDPR; administrative fine Key words: Security of Processing, … identity did indeed constitute a violation of article 32 GDPR. However, these security issues were resolved in less … article 5.2, article 24.1, article 32,1 and article 32.2 GDPR. The Litigation Chamber acknowledged the fact that the …
21 March 2019
… the data subjects, pursuant to Article 33-34 of the GDPR. The NAIH launched an administrative control procedure, … regarding to Article 9 (1) and Article 33 (1) of the GDPR and the Hungarian Privacy Act Section 60 (1). DK was on … €) to DK for violating the provisions Article 33-34 of the GDPR because DK did not notify the high risk personal data …
18 October 2021
… in the public interest in accordance with Article 89(1) GDPR and if the erasure is likely to render impossible or … of the objectives of that processing (Article 17(3)(d) GDPR). The SA emphasised, that the above mentioned act … be considered as appropriate safeguards according to 89(1) GDPR. The SA decided that the Batismal Register is an …
13 February 2019
… arrangement (AA), based on article 46.3.b of the GDPR, for transfers of personal data between EEA financial … entities and public authorities on data transfers under the GDPR in the event of a no-deal Brexit. Data flows from the … in relation to the application of Articles 40 and 41 GDPR. The guidelines intend to help clarify the procedures …
20 May 2022
… 12(1), 13, 21(1), 21(2), 24(1), 25(1), and 25(2) of the GDPR, Order to comply with the above Articles, Imposing … the serious infringement of numerous articles of the GDPR for a long period, ordered the data controller to stop … continue the data processing if made compliant with the GDPR, and issued an administrative fine in HUF equal to …
21 May 2025
… consent, in compliance with the requirements of the GDPR, which would have formed the basis for the prospecting … to processing of his or her personal data (Article 7 of the GDPR): The company failed to provide the French SA with … Code (CPCE) and the General Data Protection Regulation (GDPR) regarding the collection and proof of consent. It …
26 March 2019
… their rights under the General Data Protection Regulation (GDPR). Therefore, they had no possibility to object to … the rights we are entitled to in accordance with the GDPR. The decision of the UODO’s President concerned the … the information required under Art. 14 (1) – (3) of the GDPR only in relation to the persons whose e-mail addresses …
… Processing of Personal Data pursuant to Art. 42 GDPR (‘GDPR – information privacy standard’), Version 0.9.7 Opinion … IT-supported processing of Personal Data pursuant to art 42 GDPR (‘GDPR – information privacy standard’)” presented 2 …
26 November 2021
… of processing (Article 32). Decision: Infringement of the GDPR, Fine Key words: Principles, Lawfulness of processing, … on its own initiative whether the project complied with the GDPR. Key findings In its decision, the Icelandic DPA notes … the processing as well as the multiple infringements of the GDPR. The Ministry of Industries and Innovation was fined …