Search results

  • EDPBI:NO:OSS:D:2024:1408

    20 August 2024
    … and modalities for the exercise of the rights of the data subject) Article 13 (Information to be provided where personal data are collected from the data subject) Keywords … Privacy statement International transfer Personal data breach Right to erasure Outcome No sanction …

  • BfDI imposes Fines on Telecommunications Service Providers

    18 December 2019
    News
    … 18 December 2019 Germany The Federal Commissioner for Data Protection and Freedom of Information (BfDI) imposed a … another case, the BfDI imposed a fine of EUR 10. 000 on Rapidata GmbH. Concerning this matter, the Federal Commissioner … The BfDI considers this authentication procedure to be in breach of Article 32 of the GDPR which obliges the company …

  • October plenary - adopted documents

    21 October 2022
    News
    … regarding their approval by the Board as European Data Protection Seal pursuant to Article 42.5 (GDPR) 10 … the design choices for a digital euro from the privacy and data protection perspective 10 October 2022 Publication … public consultation. Guidelines 9/2022 on personal data breach notification under GDPR 10 October 2022 Publication …

  • Employee monitoring: French SA fined Amazon France Logistique €32 million

    23 January 2024
    News
    … Article 5 (Principles relating to processing of personal data), Article 6 (Lawfulness of processing), Article 12 … and modalities for the exercise of the rights of the data subject), Article 13 (Information to be provided where … from employees.   Key Findings  The French SA found several breaches of the GDPR regarding: Warehouse stock and order …

  • The French SA fines SOLOCAL €900 000

    21 May 2025
    News
    … professionals in the sector, particularly those who resell data, including the many intermediaries in this ecosystem known as data brokers. The French SA carried out investigations on … on the market, the financial benefit derived from the breaches, and the measures taken by the company to comply …

  • EDPB informs stakeholders about the implications of the DPF and adopts a statement on the first review of the Japan adequacy decision

    19 July 2023
    News
    … information note for individuals and entities transferring data to the U.S.. This note aims to provide concise and … to the U.S., the redress mechanisms available under the Data Privacy Framework (DPF), and the new redress mechanism … a processing, the strengthening of the duty to notify data breaches to the Japanese data protection authority and to …

  • Sejas atpazīšana lidostās: personām vajadzētu būt iespējai maksimāli kontrolēt biometriskos datus

    24 May 2024
    Press releases
    … intelligence Consistency New Technology Cybersecurity and data breach … Briselē, 24. maijā. Pēdējā plenārsēdē EDAK pieņēma …

  • EDPBI:FR:OSS:D:2021:310

    30 December 2021
    … Article 5 (Principles relating to processing of personal data) Article 13 (Information to be provided where personal data are collected from the data subject) Article 17 (Right … be informed Right to erasure Data retention Personal data breach Data security Password Outcome Administrative fine …

  • Telephone Operators: Italian SA Fines Wind EUR 17 million and Iliad EUR 0.8 million

    27 July 2020
    News
    … on July 9th on account of several instances of unlawful data processing that were mostly related to marketing. The … similar infringements that had occurred when the previous data protection law was in force.  The fine was imposed … activities to call centres, which collected data in breach of the law. The pleadings submitted by Wind Tre and …

  • Ministry of Migration and Asylum receives administrative fine and GDPR compliance order following an own-initiative investigation by the Greek SA

    15 April 2024
    News
    … fine Keywords: own-initiative investigation, biometric data, Data Protection Impact Assessments   Summary of the Decision … on the Hellenic Ministry of Migration and Asylum for the breaches found in relation to the cooperation with the …

  • EDPBI:BG:OSS:D:2023:1066

    13 September 2023
    … Article 5 (Principles relating to processing of personal data) Article 25 (Data protection by design and by default) Article 28 … fine Data protection by design and by default Personal data breach Processor Responsibility of the controller Outcome …

  • Swedish SA fines Board of Education in the City of Stockholm

    24 November 2020
    News
    … the City of Stockholm 24 November 2020 Sweden The Swedish Data Protection Authority has reviewed the so-called School … Board of Education in the City of Stockholm. The Swedish Data Protection Authority has received a number of personal data breach notifications from the City of Stockholm's Board of …

  • The French SA fines CALOGA €80 000

    5 June 2025
    News
    … Article 5 (Principles relating to processing of personal data) Decision: administrative fine Key words: … in this ecosystem, in particular intermediaries who resell data, known as data brokers. Thus, the CNIL carried out … on the market, the financial benefit derived from the breaches and the complete cessation of activity of the …

  • Norwegian DPA: Norwegian Confederation of Sport fined for inadequate testing

    15 June 2021
    News
    … for inadequate testing 15 June 2021 Norway The Norwegian Data Protection Authority has fined the Norwegian … GDPR violation. The backdrop for this case is that personal data about 3.2 million Norwegians was available online for … Data Protection Authority also found the incident to be in breach of the principles of legality, data minimisation and …

  • Administrative fines imposed on a telephone service provider

    7 October 2019
    News
    … a telephone service provider (1) Imposition of a fine for breach of the principle of accuracy and data protection by design when keeping personal data of subscribers The Hellenic DPA has received complaints …

  • 1 year GDPR – taking stock

    22 May 2019
    Press releases
    … days short of the GDPR’s first anniversary, the European Data Protection Board surveyed the Supervisory Authorities … 2017. Over 144.000 queries and complaints* and over 89.000 data breaches have been logged by the EEA Supervisory …

  • Administrative fine of €170,000 imposed on Bergen Municipality

    19 March 2019
    Press releases
    … Municipality 19 March 2019 On March 19th, the Norwegian Data Protection Authority imposed an administrative fine of … the municipality’s computer system, containing the personal data of over 35,000 pupils and employees of the … individuals, primarily children The fact that the security breach encompasses personal data to over 35 000 individuals, …

  • Guidelines 10/2020 on restrictions under Article 23 GDPR

    18 December 2020
    Guidelines
    … Type: Guidelines Topics: Restrictions The European Data Protection Board welcomes comments on the  Guidelines … set out in the Regulation and in accordance with applicable data protection rules. All legal details can be found in our … Prevention, investigation, detection and prosecution of breaches of ethics for regulated …

  • Guidelines 07/2020 on the concepts of controller and processor in the GDPR

    6 September 2020
    Guidelines
    … Type: Guidelines Topics: Controller Processor The European Data Protection Board welcomes comments on the  Guidelines … set out in the Regulation and in accordance with applicable data protection rules. All legal details can be found in our … expertise with regard to security measures and data breaches); the processor’s reliability; the processor’s …

  • Belgian SA issues reprimand for lack of transparency concerning a delisting request

    5 May 2022
    News
    … not exclusively against Google LLC, even if it is the sole data controller. On the basis of the CJEU's Google Spain … shortcomings of the GDPR by Google LLC, (2) that these breaches are attributable to Google Belgium SA and (3) that … SA (highest level of protection for the benefit of the data subjects). Decision Even if the BE SA dismissed the …