10 March 2025
… from accessing the data in the loan applications (art. 32 GDPR, art. 25 GDPR and art. 5(1)(f)). Due to poor data security, the … from accessing the data in the loan applications (art. 32 GDPR, art. 25 GDPR and art. 5(1)(f)). Due to poor data …
8 May 2020
… attention. The Board underlines that, according to the GDPR, personal data, such as names and addresses, and … data.” However, the EDPB stresses that enforcement of the GDPR lies with the national supervisory authorities. The … In the first instance, the assessment of alleged GDPR infringements falls within the competence of the …
31 October 2019
… with Article 32 paragraph (1) and paragraph (2) of the GDPR , which led to imposing an administrative fine in the … with Article 32 paragraph (1) and paragraph (2) of the GDPR , as well as of Article 33 paragraph (1) of the GDPR, which led to imposing an administrative fine in the …
16 April 2021
… on the EDPB website. Opinion 14/2021 is based on the GDPR and assesses both general data protection aspects and … on the EDPB website. Opinion 14/2021 is based on the GDPR and assesses both general data protection aspects and …
6 February 2025
… data. This was because, contrary to the indications of the GDPR the controller had not carried out an adequate risk … so that the processing meets the requirements of the GDPR and protects the rights of data subjects (point I(b) of … to comply with the principle of accountability under the GDPR (Article 5(2)) both before and after the incident. At …
6 February 2025
… bank has failed to comply with its obligations under the GDPR after the personal data of a group of customers was … secrets does not exempt from the application of the GDPR. Decision The President of the Personal Data … 928 498,06 € on mBank for infringement of Article 34 of the GDPR. The fine amount represents 24 thousandths of one per …
… and the EDPB on the interplay between the DMA and the GDPR Please note that this page is regularly updated, either … and the EDPB on the interplay between the DMA and the GDPR Please note that this page is regularly updated, either …
6 July 2021
… required by the General Data Protection Regulation (GDPR) for carrying out direct marketing. The Office of the … their rights as data subjects in accordance with the GDPR, because the robot could not understand the question of … and the method for obtaining it were not compliant with the GDPR, because consent was not requested separately for …
10 March 2021
… eżistenti dwar il-protezzjoni tad- data . Il-GDPR huwa l-pedament li fuqu għandu jinbena l-mudell Ewropew … li nenfasizzaw il-bżonn li niggarantixxu l-konsistenza mal-GDPR fir-rigward tal-kompetenza tal-awtoritajiet … dwar il-protezzjoni tad- data personali stabbiliti fil-GDPR u mid-Direttiva dwar id- Data Miftuħa. Barra minn hekk, …
20 March 2019
… relying on the new powers set out in Article 58 of the EU GDPR. The warning was addressed to the Revenue Agency to … the 15 th of April this year, pursuant to Article 35 of the GDPR. The Garante had already emphasized that the Agency … data protection by design approach that is set forth in the GDPR; indeed, the Garante had pointed out that such a …
16 May 2022
… - article 35(2) icw 38(1) Decision: infringement of the GDPR, administrative fines Key words: illegally processing … violations of the General Data Protection Regulation (GDPR). For example, the Tax Administration had no statutory … - article 35(2) icw 38(1) Decision: infringement of the GDPR, administrative fines Key words: illegally processing …
16 October 2020
… measures, as required by Article 5(1)(f) and by Article 32 GDPR. The LSA concluded that there are a number of … constitute a serious failure to comply with the GDPR. The LSA decided to impose on the controller an …
3 February 2022
… of processing (Article 6). Decision: Infringement of the GDPR, order to comply. Key words: … operations into compliance with the provisions of the GDPR within six months of this decision. For further … of processing (Article 6). Decision: Infringement of the GDPR, order to comply. Key words: …
28 March 2022
… Media Magazines B.V. Legal Reference: article 12 (2) GDPR Decision: Infringement of the GDPR, administrative fine Key words: identity document; … Media Magazines B.V. Legal Reference: article 12 (2) GDPR Decision: Infringement of the GDPR, administrative …
21 April 2022
… data pertaining to a special category of data under the GDPR (health data). The temperature checks were mainly based … of Mobility, which does not meet the criteria of the GDPR, i.e. to be a clear and precise legal standard whose … data pertaining to a special category of data under the GDPR (health data). The temperature checks were mainly based …
1 June 2020
… of a certification body pursuant to Article 43.3 (GDPR) … 1 DPC ADDITIONAL ACCREDITATION REQUIREMENTS FOR … 17065) and in accordance with Articles 43(1)(b) and 43(3) GDPR. The points below (aside from section 9) refer to ISO … and operational procedures in relation to accreditation for GDPR certification schemes. 1 SCOPE This document contains …
25 March 2019
… of an Administrative Arrangement pursuant to Article 46.3.b GDPR 222.9KB Download Opinion / Binding decision References … in the absence of a decision under Article 45(3) of the GDPR (a decision for an adequate level of data transmission … Board (the EDPB) ensures the consistent application of the GDPR within the European Economic Community, and under …
10 June 2020
… data kollha li l-ipproċessar tagħhom huwa soġġett għall-GDPR, b’mod partikolari f’dak li jirrigwarda t-trasferiment … l-applikazzjoni tal-kamp ta’ applikazzjoni territorjali tal-GDPR, b’mod partikolari fir-rigward tal-ipproċessar tad- data tal-minorenni. L-EDPB ifakkar li l-GDPR japplika għall-ipproċessar ta’ data personali minn …
14 October 2021
… obligations under data protection law (Article 12, 13 GDPR) through this procedure, as the customers were not … permissible at all. This is not explicitly regulated in the GDPR; there are no clear legal requirements in this respect. … obligations under data protection law (Article 12, 13 GDPR) through this procedure, as the customers were not …
1 July 2021
… established by the General Data Protection Regulation (GDPR). Furthermore, the enterprise had failed to fulfil its duty to provide information (Article 13 of the GDPR), its duty to delete the contents of the complainant’s … established by the General Data Protection Regulation (GDPR). Furthermore, the enterprise had failed to fulfil its …