7 April 2020
… the Berlin DPA of the data breach pursuant to Art. 33 GDPR and notified the data subjects, including the complainant, ac- cording to Art. 34 GDPR. (Please see IMI A60DD 102273 for the draft deci- sion … notified the LSA of the data breach pursuant to Art 33 GDPR and notified the data subjects, including the …
18 June 2020
… of personal data. In accordance with Article 56 of the GDPR1, the Danish DPA has been designated as the lead … set out in Article 32(1), Article 5(1)(a) and Article 33(1) GDPR. Below is a closer look at the case and a justification … OWEEX, Ascio has failed to comply with Article 32(1) of the GDPR. The Danish DPA also considers that, by failing to …
10 March 2020
… a response to the issue raised as per Article 58.1(a) GDPR, in particular as regards the complainants right to … fulfilled its obligations under Regulation (EU) 2016/679 (GDPR) by immediately addressing the issue. As the complaint … other supervisory authorities concerned as per Article 60.3 GDPR (IMI entry number 107971). As none of the other …
10 March 2020
… a response to the issue raised as per Article 58.1(a) GDPR, in particular as regards the complainants right to … fulfilled its obligations under Regulation (EU) 2016/679 (GDPR) by immediately addressing the issue. As the complaint … other supervisory authorities concerned as per Article 60.3 GDPR (IMI entry number 107959). As none of the other …
10 March 2020
… a response to the issue raised as per Article 58.1(a) GDPR, in particular as regards to the lawfulness of the … fulfilled its obligations under Regulation (EU) 2016/679 (GDPR) by immediately addressing the issue. As the complaint … other supervisory authorities concerned as per Article 60.3 GDPR (IMI entry number 108026). As none of the other …
20 July 2018
… innovation of the General Data Protection Regulation (GDPR) is the new way in which the supervisory authorities of … share information with other supervisory authorities. The GDPR sets specific deadlines for each phase of the … to be kept informed on the state of play of a case. The GDPR does not offer a quick fix in case of a complaint but …
3 February 2023
… Reference: Data retention periods (article 5.1.e of the GDPR), Information to individuals (article 13 of the GDPR), Data protection by default (article 25.2 of the GDPR), Security of processing (article 32 of the GDPR), Data … Reference: Data retention periods (article 5.1.e of the GDPR), Information to individuals (article 13 of the GDPR), …
15 July 2019
… Committee on the implications of the US CLOUD Act Art.64 GDPR Opinion on Standard Contractual Clauses for processors under Art.28.8 GDPR by DK SA Art. 64 GDPR Opinion on Accreditation Criteria for monitoring bodies … Committee on the implications of the US CLOUD Act Art.64 GDPR Opinion on Standard Contractual Clauses for processors …
3 September 2024
… (a) of the General Data Protection Regulation (hereinafter: GDPR), read in conjunction with Article 6(1) GDPR. Second, for the purpose of said service, Clearview violates Article 9(1) GDPR, by processing a special category of personal data … (a) of the General Data Protection Regulation (hereinafter: GDPR), read in conjunction with Article 6(1) GDPR. Second, …
16 December 2022
… FREE Legal Reference: right of access (article 15 of the GDPR), right to erasure (articles 12 and 21 of the GDPR), obligation to secure personal data (Article 32 of the GDPR), obligation to document a personal data breach … FREE Legal Reference: right of access (article 15 of the GDPR), right to erasure (articles 12 and 21 of the GDPR), …
12 August 2025
… Association “Shield of David” Legal Reference(s): GDPR: Article 5. Principles relating to processing of personal data GDPR: Article 12: Transparent information, communication and … for the exercise of the rights of the data subject GDPR: Article 13: Information to be provided where personal …
6 April 2022
… Ireland Group plc Legal Reference: Article 32(1), 33 and 34 GDPR Decision: Infringement of Article 32(1), 33 and 34 GDPR, Order to comply with article 32(1) GDPR, Issued reprimand in respect of all of the … Ireland Group plc Legal Reference: Article 32(1), 33 and 34 GDPR Decision: Infringement of Article 32(1), 33 and 34 …
1 December 2022
… Postal and Electronic Communications Code and 7 of the GDPR) obligations of information (Articles 13 and 14 of the GDPR) and to respect the exercise of rights (Articles 13 and 14 of the GDPR) obligation to ensure security of personal data … Postal and Electronic Communications Code and 7 of the GDPR) obligations of information (Articles 13 and 14 of the …
13 September 2024
… decision: 27 May 2024 National case Legal Reference (s): GDPR: Article 5.1.a: Principle of lawfulness, fairness and transparency; GDPR: Article 6.1.f: Processing based on legitimate interest; GDPR: Article 14: Information to be provided where personal … decision: 27 May 2024 National case Legal Reference (s): GDPR: Article 5.1.a: Principle of lawfulness, fairness and …
27 April 2023
… compliant. The Guide aims to raise awareness about the GDPR and to provide practical information to SMEs about GDPR compliance in an accessible and easily understandable … tools and practical tips to help them comply with the GDPR. It includes concrete examples gathered during our 5 …
10 March 2020
… processing of the complainant’s data as per Article 58.1(a) GDPR, in particular as regards the lack of reaction by the … of the obligations set out in Regulation (EU) 2016/679 (GDPR) by As the complaint has only a limited personal … other supervisory authorities concerned as per Article 60.3 GDPR (IMI entry number . As none of the other concerned …
2 May 2023
… did not meet the minimum requirements (Article 28(3)(a) GDPR) Failure to provide a transparent arrangement for the … out jointly with another data controller (Article 26 GDPR) Failure to demonstrate a lawful ground for all processing operations (Article 6 GDPR) Failure to comply with the obligation to process …
8 May 2025
… the simplification of record-keeping obligation under the GDPR, amounting to a targeted amendment of Art. 30(5) GDPR. The joint letter replies to the letter sent by the … how it intends to introduce specific modifications to the GDPR. The EDPB and EDPS understand that a formal …
2 February 2022
… 2 February 2022 EDPB The EDPB adopted its opinion on the GDPR-CARPA certification scheme submitted to the Board by … on criteria for a nationwide certification scheme. The GDPR-CARPA certification scheme is a general scheme, which … said: “This opinion is an important step towards greater GDPR compliance. The main aim of certification mechanisms is …
25 May 2018
… is created by the General Data Protection Regulation (GDPR), which enters into application today. The EDPB, which … authorities to ensure a consistent application of the GDPR throughout the European Union. Andrea Jelinek, Chair of … to protect their personal data. I am convinced that the GDPR gives individuals and supervisory authorities the means …