8 May 2025
… the simplification of record-keeping obligation under the GDPR, amounting to a targeted amendment of Art. 30(5) GDPR. The joint letter replies to the letter sent by the … how it intends to introduce specific modifications to the GDPR. The EDPB and EDPS understand that a formal …
2 May 2023
… did not meet the minimum requirements (Article 28(3)(a) GDPR) Failure to provide a transparent arrangement for the … out jointly with another data controller (Article 26 GDPR) Failure to demonstrate a lawful ground for all processing operations (Article 6 GDPR) Failure to comply with the obligation to process …
4 March 2019
… Data Protection Regulation - Regulation (EU) 2016/679 ("GDPR" or "the Regulation). The complainant contended that … that the controller did not infringe the provisions of the GDPR, and consequently dismissed the compliant. … Decision …
2 February 2022
… 2 February 2022 EDPB The EDPB adopted its opinion on the GDPR-CARPA certification scheme submitted to the Board by … on criteria for a nationwide certification scheme. The GDPR-CARPA certification scheme is a general scheme, which … said: “This opinion is an important step towards greater GDPR compliance. The main aim of certification mechanisms is …
25 May 2018
… is created by the General Data Protection Regulation (GDPR), which enters into application today. The EDPB, which … authorities to ensure a consistent application of the GDPR throughout the European Union. Andrea Jelinek, Chair of … to protect their personal data. I am convinced that the GDPR gives individuals and supervisory authorities the means …
2 September 2021
… a dispute resolution decision on the basis of Art. 65 GDPR. This binding decision seeks to address the dispute … supervisory authorities (CSAs). In accordance with the GDPR, the EDPB’s binding decision has now been published, … IE SA already identified a severe breach of Art. 12-13-14 GDPR. The EDPB identified additional shortcomings with the …
25 May 2018
… is created by the General Data Protection Regulation (GDPR), which enters into application as of today. The EDPB, … authorities to ensure a consistent application of the GDPR throughout the European Union, as well as consistent … data are inherent to human beings. I am convinced that the GDPR gives individuals and supervisory authorities the means …
1 December 2022
… and consistency mechanism outlined in Article 60 GDPR. LSA: Irish Supervisory Authority (SA). and CSAs: all … Ireland Limited) (‘Meta Platforms’). Legal Reference: GDPR obligation for Data Protection by Design and Default (Article 25 GDPR). Decision: infringement of Articles 25(1) and 25(2) …
10 December 2019
… certain provisions of General Data Protection Regulation (GDPR). The controller was sanctioned as follows: for the … mentioned in Article 83 paragraph (5) letter a) of GDPR – fine in the amount of 14336.1 lei, the equivalent of … mentioned in Article 83 paragraph (4) letter a) of GDPR – fine in the amount of 47787 lei, the equivalent of …
28 March 2022
… Foreign languages private school Legal Reference: GDPR: Article 5(1)(a): Principle of lawfulness, fairness and … Article 21: Right to object Decision: Infringement of the GDPR, Administrative fine Key words: Right to object, … the provisions of Articles 5(1)(f)(a), 5(2) and 13 of the GDPR and in any case without clearly specifying the legal …
26 April 2024
… of Hafnarfjörður infringed multiple Articles of the GDPR with its use of Google’s educational system i.e.: … accordance with the Regulation (Articles 5, 24(1) & 28(1) GDPR) Data processing agreement did not meet the minimum requirements (Article 28(3)(a) GDPR) Failure to demonstrate a specified, explicit, and …
26 April 2024
… of Reykjanesbær infringed multiple Articles of the GDPR with its use of Google’s educational system i.e.: … accordance with the Regulation (Articles 5, 24(1) & 28(1) GDPR) Data processing agreement did not meet the minimum requirements (Article 28(3)(a) GDPR) Failure to demonstrate a specified, explicit, and …
3 August 2019
… of Article 5 of the General Data Protection Regulation (‘GDPR’) requires that the personal data processed by … controller did not comply with its obligations under the GDPR as it did not take sufficient action to assure itself …
18 January 2024
… case digest on Security of Processing (Art. 32 GDPR) and Data Breach Notification (Art. 33 & 34 GDPR) . Since the entry into force of the GDPR, data protection authorities (DPAs) have closely …
3 August 2019
… general-data-protection-regulation-gdpr/individual-rights/right-of-access/ In the absence of … controller did not comply with its obligations under the GDPR as it did not take sufficient action to assure itself …
19 December 2022
… Statistics Institute (INE) Legal Reference: article 9(1) GDPR; article 12 GDPR; article 13 GDPR; article 28(1), (6) and (7) GDPR; article 35(1), (2) …
25 July 2022
… Legal Reference: Data minimisation (Article 5.1.c GDPR), Retention period (Article 5.1.e GDPR), Information of individuals (Article 12 GDPR) Decision: Administrative fine Key words: Geolocation …
29 November 2022
… Legal Reference: 1. Articles 5(1)(f) and 32(1) of the GDPR 2. Article 5(1), Article 32(1), Article 33(1) of the GDPR 3. Article 15, Article 13, Article 12 of the GDPR 4. Article 5(1)(f) and 32(1), Article 24 and 30(1), …
26 April 2024
… of Kópavogur infringed multiple Articles of the GDPR with its use of Google’s educational system i.e.: … accordance with the Regulation (Articles 5, 24(1) & 28(1) GDPR) Data processing agreement did not meet the minimum requirements (Article 28(3)(a) GDPR) Failure to demonstrate a specified, explicit, and …
11 July 2019
… a. Privacy Policy, 15 sheets, b. Compliance with the GDPR — FAQ, 5 sheets; 15. Supplemental statement of the … party failed to comply with Articles 5(2) and 24(1) GDPR, which was interpreted as the obligation to take into … to properly show compliance with Articles 5(2) and 24(1) GDPR was provided. The last objection was partially …