10 March 2020
… violations of, inter alia, Art. 5(1)f and Art. 32 of the GDPR. When determining the fine, the SA referred to the … violations of, inter alia, Art. 5(1)f and Art. 32 of the GDPR. When determining the fine, the SA referred to the …
18 January 2019
… as to the identity of the complainant according to Art 12.6 GDPR. “The level of verification to be carried out is …
28 November 2024
… Office then explained the procedure resulting from the GDPR. In the case of such an incident, the risk to which the … a fine of 210 € for infringement of Article 33 of the GDPR. For further information: Decision in national … Office then explained the procedure resulting from the GDPR. In the case of such an incident, the risk to which the …
11 September 2020
… of confidentiality and accountability specified in the GDPR. It is worth noting that the personal data of … of the principle of storage limitation provided for in the GDPR. Moreover, in the course of the conducted proceedings … of confidentiality and accountability specified in the GDPR. It is worth noting that the personal data of …
15 September 2023
… the Irish SA regarding TikTok Technology Limited (Art. 65 GDPR) … Decision in the matter of TikTok Technology Limited …
11 January 2024
… Italy Type Code for Controllers/Processors subject to GDPR Scope National Monitoring Body (website under …
7 July 2022
… the controller (Article 24) Decision: Infringement of the GDPR, Order to comply Key words: Cyber attack, Ransomware, … the controller (Article 24) Decision: Infringement of the GDPR, Order to comply Key words: Cyber attack, Ransomware, …
24 November 2021
… 5), Legal basis (Article 6) Decision: Infringement of the GDPR Key words: Income Data, Lack of Procedures, Special … 5), Legal basis (Article 6) Decision: Infringement of the GDPR Key words: Income Data, Lack of Procedures, Special …
31 May 2023
… characteristics of a data breach within the meaning of the GDPR. The Polish SA, taking into account the scope of … characteristics of a data breach within the meaning of the GDPR. The Polish SA, taking into account the scope of …
2 September 2024
… bank has violated the general data protection regulation, GDPR, by not having taken appropriate technical and … bank has violated the general data protection regulation, GDPR, by not having taken appropriate technical and …
6 July 2023
… method of delivering call recordings in accordance with the GDPR. Neither did the company inform the Finnish SA of … method of delivering call recordings in accordance with the GDPR. Neither did the company inform the Finnish SA of …
7 March 2025
… lawfulness of the processing (Articles 5.1 (a), 6.1 and 9.1 GDPR). Decision The Icelandic SA imposed a fine of 33 854 … lawfulness of the processing (Articles 5.1 (a), 6.1 and 9.1 GDPR). Decision The Icelandic SA imposed a fine of 33 854 …
30 June 2021
… therein in accordance with the requirements under the GDPR. The Polish DPA asked the Foundation to indicate … proceedings against the Foundation. Pursuant to the GDPR, in case of a personal data breach, the controller … therein in accordance with the requirements under the GDPR. The Polish DPA asked the Foundation to indicate …
27 May 2020
… had not made the impact assessment required by the GDPR before starting to process the location data. The … controller’s documentation related to compliance with the GDPR. The company had asked for information on matters such … had not made the impact assessment required by the GDPR before starting to process the location data. The …
12 January 2023
… Platforms Ireland Limited and its Facebook service (Art. 65 GDPR) … Decision concerning a complaint directed against …
20 August 2020
… Netherlands Type Code for Controllers/Processors subject to GDPR Scope National Opinion/Guideline References Guidelines …
14 January 2022
… (Art. 32(1), Art. 32(2)) Decision: infringement of GDPR, fine issued Key words: principles, processing, … (Art. 32(1), Art. 32(2)) Decision: infringement of GDPR, fine issued Key words: principles, processing, …
11 June 2019
… data in the old system had never been deleted. The GDPR establishes that personal data must be stored in such a … data in the old system had never been deleted. The GDPR establishes that personal data must be stored in such a …
14 April 2020
… of advising and ensuring the correct application of the GDPR and the E-Privacy Directive, to be fully involved in … of advising and ensuring the correct application of the GDPR and the E-Privacy Directive, to be fully involved in …
… they hold the position required by Articles 37 to 39 of the GDPR and whether they have the necessary resources to carry … they hold the position required by Articles 37 to 39 of the GDPR and whether they have the necessary resources to carry …