17 October 2023
… In its decision, IMY states that H&M has violated the GDPR by not ceasing to handle the complainants' personal … 28 500 EUR) against the company for violations of the GDPR. For further information: H&M har gjort det onödigt … In its decision, IMY states that H&M has violated the GDPR by not ceasing to handle the complainants' personal …
7 June 2023
… a legally binding decision on the basis of Art. 65(1)(a) GDPR. Following public consultation, the guidelines were … of the EDPB Guidelines on the application of Art. 60 GDPR and changes to the EDPB Rules of Procedure. In … a legally binding decision on the basis of Art. 65(1)(a) GDPR. Following public consultation, the guidelines were …
21 October 2020
… Data Protection Regulation (hereinafter referred to as the “GDPR”). The fine was imposed for infringements of Articles 5(1)(d) and 5(1)(f) of the GDPR, i.e. a failure to implement appropriate technical and … erased or rectified without delay (Article 5(1)(d) of the GDPR), and the principle of integrity and confidentiality …
2 September 2020
… the processing of personal data to the provisions of the GDPR by discontinuing making available on the GEOPORTAL2 … with them. In accordance with Article 5(1)(a) of the GDPR, personal data must be processed lawfully, fairly and … where at least one of the conditions indicated in Art. 6 GDPR is met. In the course of the proceedings, GGK did not …
18 December 2019
… rights. The European General Data Protection Regulation (GDPR) gives us the opportunity to decisively punish … procedure to be in breach of Article 32 of the GDPR which obliges the company to take appropriate technical … comply with its legal requirement under Article 37 of the GDPR to appoint an internal data protection officer. When …
28 October 2021
… Trasporto Passeggeri Emilia Romagna S.p.A. Legal Reference: GDPR: Article 5 (Principles applying to personal data … remote surveillance) Decision: Finding of infringements of GDPR and Italian law, imposition of administrative fine Key … out in this respect by national law pursuant to Article 88 GDPR – namely, either an ad-hoc agreement with trade unions …
7 September 2022
… of processing (Article 32) Decision: Infringement of the GDPR; administrative fine Key words: Security of Processing, … identity did indeed constitute a violation of article 32 GDPR. However, these security issues were resolved in less … article 5.2, article 24.1, article 32,1 and article 32.2 GDPR. The Litigation Chamber acknowledged the fact that the …
26 January 2023
… Legal references: The right of access to data (Art. 15 of GDPR) Decision: The complaint was upheld Summary of the … processed in accordance with the procedure laid down in the GDPR, and during the conversations requested, only those … to be an improper implementation of Article 15(3) of the GDPR. For further information: Išnagrinėjus skundą …
13 May 2021
… and contravened Article 6(1) and Article 5(1)(a) of the GDPR. The recordings had already been handed over to the … previous legislation The infringement occurred before the GDPR went into effect on 20 July 2018. The fine was … and contravened Article 6(1) and Article 5(1)(a) of the GDPR. The recordings had already been handed over to the …
22 July 2021
… Urgent Binding Decision on the request under Article 66(2) GDPR from the Hamburg Supervisory Authority for ordering the … Urgent Binding Decision on the request under Article 66(2) GDPR from the Hamburg Supervisory Authority for ordering the …
21 June 2023
… as follows: Article 5(1)(c) and Article 5(1)(e) of the GDPR The DPC found that Airbnb’s retention of a copy of the … of this complaint in accordance with Article 60(7) of the GDPR. In light of the infringements of Article 5(1)(c) and … a reprimand to Airbnb pursuant to Article 58(2)(b) of the GDPR. In addition, the DPC made the following orders against …
25 March 2019
… 4x35 for a total of DKK 1. 2 million for a breach of the GDPR. Taxa 4x35 could be fined for failure to delete … Agency proposes a fine in accordance with the rules of the GDPR. 8.873.333 taxi trips In the autumn of 2018, the Danish … only because the company’s system makes compliance with the GDPR burdensome. “We have opted for a fine in this case. …
18 October 2021
… in the public interest in accordance with Article 89(1) GDPR and if the erasure is likely to render impossible or … of the objectives of that processing (Article 17(3)(d) GDPR). The SA emphasised, that the above mentioned act … be considered as appropriate safeguards according to 89(1) GDPR. The SA decided that the Batismal Register is an …
22 June 2021
… for violation of the General Data Protection Regulation (GDPR). This case concerns insufficient risk assessment and … that the bank did not meet the requirements of the GDPR for risk assessment and appropriate technical measures … risk assessment and testing as required by the law. The GDPR requires that the data controller carry out risk …
28 November 2024
… was inconsistent with the applicable provisions of the GDPR, due to an incorrectly conducted risk analysis, which … such as a risk register or confirmations of monitoring of GDPR procedures. However, the rules for using external data … for infringement of Articles 5, 24, 25 and 32 of the GDPR. What is more, appropriate organisational and technical …
1 December 2019
… been made. This is, however, mandatory under Art. 37 (7) GDPR. Violations of this requirement are subject to a fine in accordance with Art. 83 Para. 4 lit. a) GDPR. The fine may sound low at first sight. However, … been made. This is, however, mandatory under Art. 37 (7) GDPR. Violations of this requirement are subject to a fine …
3 November 2021
… of processing (Article 32) Decision: Infringement of the GDPR, Order to comply Key words: Loss of … a violation of Article 5.1.f) and Article 32 of the GDPR, for which the telephone company is responsible. The … of processing (Article 32) Decision: Infringement of the GDPR, Order to comply Key words: Loss of …
21 March 2019
… the data subjects, pursuant to Article 33-34 of the GDPR. The NAIH launched an administrative control procedure, … regarding to Article 9 (1) and Article 33 (1) of the GDPR and the Hungarian Privacy Act Section 60 (1). DK was on … €) to DK for violating the provisions Article 33-34 of the GDPR because DK did not notify the high risk personal data …
… particular the record-keeping obligation under Art. 30(5) GDPR Statement 2/2025 on the implementation of the PNR … down additional procedural rules for the enforcement of the GDPR Statement 3/2024 on data protection authorities’ role … for clarifications on the consistent application of the GDPR, focusing on health research Letter to the Council of …
20 July 2020
… the provisions of the General Data Protection Regulation (GDPR), where the breach consisted in failure to provide the … tasked with monitoring and enforcing the application of the GDPR. Within the scope of its competences, it conducts inter … proceedings on the application of the provisions of the GDPR. For the performance of its tasks, the supervisory …