18 June 2020
… Article 5 (Principles relating to processing of personal data) Article 32 (Security of processing) Article 33 (Notification of a personal data breach to the supervisory authority) Article 34 (Communication of a personal data breach to the data subject) Keywords Data subject …
18 December 2019
… 18 December 2019 Germany The Federal Commissioner for Data Protection and Freedom of Information (BfDI) imposed a fine … 37 of the GDPR to appoint an internal data protection officer. When imposing the 10.000 Euro fine, the fact was … The Federal Commissioner for Data Protection and Freedom of Information (BfDI) imposed a …
… Guidelines During its first plenary meeting the European Data Protection Board endorsed the GDPR related WP29 Guidelines: … 2016/679, WP248 rev.01 Guidelines on Data Protection Officers ('DPO'), WP243 rev.01 Guidelines for identifying a … During its first plenary meeting the European Data Protection Board endorsed the GDPR related WP29 …
11 September 2020
… 11 September 2020 Poland The President of the Personal Data Protection Office, after having found a personal data … UODO stated that in the case concerned the Data Protection Officer (DPO) performed its tasks without having due regard … The President of the Personal Data Protection Office, after having found a personal data …
31 January 2019
… to a) explore the level of compliance with the General Data Protection Regulation (GDPR) -six months after its entry … a sufficient degree, more than 70%, of Data Protection Officers’ designation was noted in the private sector. On … to a) explore the level of compliance with the General Data Protection Regulation (GDPR) -six months after its …
20 July 2020
… be carried out 20 July 2020 The President of the Personal Data Protection Office (UODO), after having conducted an … protection, and whether GGK has appointed a Data Protection Officer. Unfortunately, due to the lack of access by the … The President of the Personal Data Protection Office (UODO), after having conducted an …
7 October 2019
… 1/6 Ref No. UOOU-03390/19-7 ORDER The Office for Personal Data Protection, as the competent administrative authority … in the Commercial Register maintained by the the executive officer of which is born DD Month YYYY, residing at Address … Key words: Lawfulness of processing, Legitimate interest, Data subject rightsSummary of the DecisionOrigin of the case …
2 February 2022
… Article 5 (Principles relating to processing of personal data) Article 6 (Lawfulness of processing) Article 7 … Article 32 (Security of processing) Article 35 (Data protection impact assessment) Article 37 (Designation of the data protection officer) Keywords Advertising E-Commerce Lawfulness of …
6 February 2025
… fine of 19 800 € for failure to notify a personal data breach to the supervisory authority 6 February 2025 … personal data breach to the President of the Personal Data Protection Office, nor did he notify the natural person of … must also include the contact of the Data Protection Officer of the National Public Prosecutor's Office, who can …
6 February 2025
… administrative fine of 928 498,06 € for failure to inform data breach victims 6 February 2025 Poland Background … and remedies and be provided with the contact of the Data Protection Officer who could provide more information about the breach. … Reference (s): Article 34 (Communication of a personal data breach to the data subject) Decision: Administrative …
5 May 2022
… and fine imposed Key words: special categories of personal data, unauthorised access Summary of the Decision Origin … public access, which they should have been. The executive officer failed to notice this, and the document passed … is a violation of Article 32 (1) (b) of the General Data Protection Regulation, which requires implementation of a …
28 February 2024
… 28 February 2024 EDPB Brussels, 28 February - The European Data Protection Board has kicked off its Coordinated Enforcement … 2022, and the designation and position of Data Protection Officers, in 2023 . For further information: AT DPA: … Brussels, 28 February - The European Data Protection Board has kicked off its Coordinated …
16 October 2018
… operations which are subject to the requirement for a Data Protection Impact Assessment under Article 35(4) of the General Data Protection Regulation (EU) 2016/679 (GDPR) Decision … HELLENIC DATA PROTECTION AUTHORITY Athens, 16-10-2018 Ref.: … operations which are subject to the requirement for a Data Protection Impact Assessment under Article 35(4) of the …
2 October 2019
… PL Main legal reference Article 15 (Right of access by the data subject) Article 5 (Principles relating to processing of personal data) Keywords Identity verification Legal age Right of … complainant filed a complaint against ith the Austrian data protection authority ("ÖDSB") regarding the roof of …
12 February 2021
… imposed on it in an administrative decision. The Personal Data Protection Office (UODO) ordered the entrepreneur to … the name and contact details for the data protection officer or other contact point where more information can be … imposed on it in an administrative decision. The Personal Data Protection Office (UODO) ordered the entrepreneur to …
14 September 2022
… associated with the processing of individuals’ personal data in criminal matters, especially where this concerns … which will concern the designation and position of the data protection officer . Further work will now be carried out to specify … associated with the processing of individuals’ personal data in criminal matters, especially where this concerns …
2 September 2024
… and modalities for the exercise of the rights of the data subject), Article 15 (Right to access by the data … specifically asked his demand to be transferred to the Data Protection Officer (DPO). However, despite the fact that his request … and modalities for the exercise of the rights of the data subject), Article 15 (Right to access by the data …
15 November 2018
… operations which are subject to the requirement for a Data Protection Impact Assessment under Article 35(4) of the General Data Protection Regulation (EU) 2016/679 (GDPR) Decision … List of Types of Data Processing Operations which require a Data Protection Impact Assessment. Introduction Article 35 of the …
21 October 2022
… 17 (Right to erasure (‘right to be forgotten’)) Keywords Data protection officer Exercise of data subject rights Right to erasure …
10 June 2022
… confidentiality); Art. 13 and 14 (Information); Art. 25 (Data protection by design and by default); Art. 28 (Processor); … given in this respect by the Hospital’s Data Protection Officer (DPO). The whistle-blowing service provider had not … confidentiality); Art. 13 and 14 (Information); Art. 25 (Data protection by design and by default); Art. 28 …