Search results

  • Norwegian DPA: BRAbank ASA fined

    22 June 2021
    News
    … DPA: BRAbank ASA fined 22 June 2021 Norway The Norwegian Data Protection Authority has fined BRAbank EUR 40,000 (NOK 400,000) for violation of the General Data Protection Regulation (GDPR). This case concerns … This matter began with a notice of a personal data breach on 6 September 2019 from what was then Easybank ASA. …

  • EDPBI:LT:OSS:D:2021:298

    29 November 2021
    … of processing) Article 33 (Notification of a personal data breach to the supervisory authority) Article 34 (Communication of a personal data breach to the data subject) Keywords Personal data

  • French DPA: 1.75 million penalty against AG2R LA MONDIALE

    8 September 2021
    News
    … national case Controller: AG2R LA MONDIALE Legal Reference: Data retention period (Article 5.1.e GDPR), Information …                      Key words: Insurances, data retention, information Summary of the Decision Origin … comply with articles 5-1-e, 13 and 14 of the GDPR. Decision Breach of Article 5-1-e of the GDPR The company had not …

  • EDPBI:HU:OSS:D:2021:185

    4 February 2021
    … of processing) Article 33 (Notification of a personal data breach to the supervisory authority) Article 34 (Communication of a personal data breach to the data subject) Keywords Data security …

  • EDPBI:FI:OSS:D:2024:1297

    30 May 2024
    … of processing) Article 33 (Notification of a personal data breach to the supervisory authority) Article 34 (Communication of a personal data breach to the data subject) Keywords Data security …

  • EDPBI:AT:OSS:D:2023:767

    16 May 2023
    … of processing) Article 33 (Notification of a personal data breach to the supervisory authority) Article 34 (Communication of a personal data breach to the data subject) Keywords Data security …

  • Spanish Data Protection Authority (AEPD) imposes fine of 6.000.000 EUR on CAIXABANK, S.A.,

    19 February 2021
    News
    … Spanish Data Protection Authority (AEPD) imposes fine of 6.000.000 … EUR on CAIXABANK, S.A., 19 February 2021 Spain The Spanish Data Protection Authority (AEPD) imposed a total fine of … personal data. The AEPD concluded that this constituted a breach of Article 6 of the GDPR, and according to Article 83 …

  • French SA: Cookies and advertisements inserted between emails: GOOGLE fined 325 000 000 EUR by the CNIL

    4 September 2025
    News
    … without free and informed consent (Article 82 of the French Data Protection Act) Decision: Infringement of the French … Electronic Communications Code, Infringement of the French Data Protection Act, Administrative fine and injunction Key … this context was therefore not valid, which constituted a breach of the French Data Protection Act (Article 82). …

  • EDPBI:DEBE:OSS:D:2021:211

    23 April 2021
    Decision by the SA
    … Main legal reference Article 33 (Notification of a personal data breach to the supervisory authority) Article 34 (Communication of a personal data breach to the data subject) Keywords Personal data

  • EDPBI:BG:OSS:D:2023:659

    30 January 2023
    … Article 5 (Principles relating to processing of personal data) Article 32 (Security of processing) Article 33 (Notification of a personal data breach to the supervisory authority) Keywords Personal …

  • EDPBI:FI:OSS:D:2024:1296

    30 May 2024
    … of processing) Article 33 (Notification of a personal data breach to the supervisory authority) Article 34 (Communication of a personal data breach to the data subject) Keywords Data security …

  • EDPBI:FI:OSS:D:2024:1295

    29 May 2024
    … of processing) Article 33 (Notification of a personal data breach to the supervisory authority) Article 34 (Communication of a personal data breach to the data subject) Keywords Data security …

  • EDPBI:ES:OSS:D:2024:1422

    3 September 2024
    … Article 5 (Principles relating to processing of personal data) Article 32 (Security of processing) Article 33 (Notification of a personal data breach to the supervisory authority) Article 34 …

  • EDPBI:DEBE:OSS:D:2021:204

    24 March 2021
    Decision by the SA
    … Main legal reference Article 33 (Notification of a personal data breach to the supervisory authority) Article 34 (Communication of a personal data breach to the data subject) Keywords Personal data

  • EDPBI:DEBE:OSS:D:2021:222

    17 May 2021
    Decision by the SA
    … Main legal reference Article 33 (Notification of a personal data breach to the supervisory authority) Article 34 (Communication of a personal data breach to the data subject) Keywords Personal data

  • EDPBI:FR:OSS:D:2024:1106

    16 January 2024
    … of processing) Article 33 (Notification of a personal data breach to the supervisory authority) Article 34 (Communication of a personal data breach to the data subject) Keywords Data security …

  • EDPBI:AT:OSS:D:2023:799

    17 June 2023
    … of processing) Article 33 (Notification of a personal data breach to the supervisory authority) Article 34 (Communication of a personal data breach to the data subject) Keywords Data security …

  • EDPBI:FR:OSS:D:2021:313

    28 December 2021
    … of processing) Article 33 (Notification of a personal data breach to the supervisory authority) Article 34 (Communication of a personal data breach to the data subject) Keywords Personal data

  • Polish DPA imposes a fine on Pactum Poland Sp. z o.o. for lack of cooperation

    24 February 2022
    News
    … necessary for the handling of the case constitutes a breach of the obligation to provide the supervisory … related to cooperation with the Polish DPA constitutes a breach of great gravity and as such is subject to financial … necessary for the handling of the case constitutes a breach of the obligation to provide the supervisory …

  • EDPBI:SE:OSS:D:2024:1529

    18 November 2024
    … Main legal reference Article 33 (Notification of a personal data breach to the supervisory authority) Article 34 (Communication of a personal data breach to the data subject) Keywords Personal data