11 July 2019
… Article 5 (Principles relating to processing of personal data) Article 6 (Lawfulness of processing) Keywords Consumer … 1/11 THE OFFICE FOR PERSONAL DATA PROTECTION Pplk. Sochora 27, 170 00 Prague 7, Czech … the above conclusion in itself does not mean that the is in breach of the rules stipulated by Regulation (EU) 2016/679, …
15 December 2021
… Pegasus, final version of Guidelines on examples regarding data breach notifications 15 December 2021 EDPB The EDPB and the … (SAs) contributed to the evaluation and review of the Data Protection Law Enforcement Directive (LED) , carried … (SAs) contributed to the evaluation and review of the Data Protection Law Enforcement Directive (LED) , carried …
8 July 2019
… Intention to fine British Airways £183.39m under GDPR for data breach 8 July 2019 United Kingdom Following an extensive … British Airways £183.39M for infringements of the General Data Protection Regulation (GDPR). The proposed fine relates … British Airways £183.39M for infringements of the General Data Protection Regulation (GDPR). The proposed fine relates …
31 July 2019
… Company fined €150,000 by the Hellenic DPA The Hellenic Data Protection Authority, in response to a complaint, … of the lawfulness of the processing of personal data of the employees of the company ‘PRICEWATERHOUSECOOPERS … to provide consent to the processing of their personal data. The DPA considered that PWC BS as the controller: …
9 July 2019
… International, Inc more than £99 million under GDPR for data breach 9 July 2019 United Kingdom Statement in response to … Office (ICO) intends to fine it for breaches of data protection law. Following an extensive investigation … Office (ICO) intends to fine it for breaches of data protection law. Following an extensive investigation …
3 March 2022
… but the risk of their occurrence as a reason for breach notification 3 March 2022 Poland Background … S.A. Legal Reference: Communication of a personal data breach to the data subject (Article 34(1)) Decision: Infringement of the … S.A. Legal Reference: Communication of a personal data breach to the data subject (Article 34(1)) Decision: …
11 February 2021
… School of Judiciary and Public Prosecution (KSSIP) for breaching the GDPR rules 11 February 2021 Poland The … its obligations as a controller. According to the Personal Data Protection Office, the controller did not take the … measures in order to ensure the security of personal data contained in the copy of the database of the training …
8 September 2022
… Supervisory Authority fines Enel Energie Muntenia S.A. for breaching Article 32 GDPR 8 September 2022 Romania … of processing (Article 32). Notification of a personal data breach to the supervisory authority (Article 33). … Infringement of the GDPR, Corrective measures. Key words: Data breach, security of processing. Summary of the …
19 March 2021
… Polish DPA: Breach of the GDPR provisions by Funeda results in a fine 19 … Sp. z o.o. company breached the provisions of the General Data Protection Regulation (GDPR) by not cooperating with Polish Data Protection Authority in the scope of performing the … Sp. z o.o. company breached the provisions of the General Data Protection Regulation (GDPR) by not cooperating with …
3 September 2019
… and modalities for the exercise of the rights of the data subject) Article 13 (Information to be provided where personal data are collected from the data subject) Article 14 (Information to be provided where … and the link to a portal for en- quiries from data subjects are now also integrated as a contact option. …
28 April 2020
… of processing) Article 15 (Right of access by the data subject) Keywords Consumer protection Right of access … reprimand your company for an infringement of the Gen- eral Data Protection Regulation (GDPR) when processing personal … the mistake of an indi- vidual employee. There has been a breach of Art. 12 (3) (1) GDPR (one- month period). You have …
15 December 2020
… Irish Data Protection Commission announces decision in Twitter inquiry 15 December 2020 Ireland The Data Protection Commission (DPC) has today announced a … commenced in January, 2019 following receipt of a breach notification from Twitter and the DPC has found that …
18 July 2023
… Romanian SA fines UiPath SRL for breaching Articles 25 and 32 GDPR 18 July 2023 Romania … Controller: UiPath SRL Legal references: Article 25 (Data protection by design and by default), Article 32 … Decision: Administrative fine, Compliance order Key words: Data protection by design and by default, Personal data …
10 May 2019
… FR Main legal reference Article 15 (Right of access by the data subject) Article 32 (Security of processing) Article 5 (Principles relating to processing of personal data) Article 6 (Lawfulness of processing) Keywords … processing Right of access Third party access to personal data Outcome No violation Summary 61.1KB Download Decision …
30 June 2021
… must be notified to the supervisory authority and the data subjects 30 June 2021 Poland Mediation Promotion and … 13 000 PLN (3 000 EUR) for failing to notify the personal data breach to the supervisory authority without undue delay, and … 13 000 PLN (3 000 EUR) for failing to notify the personal data breach to the supervisory authority without undue …
28 November 2024
… fine of 2 500 € for the way of collecting the data 28 November 2024 Poland Background information Date of … Article 24 (Responsibility of the controller), Article 25 (Data protection by design and by default), Article 32 … of processing), Article 33 (Notification of a personal data breach to the supervisory authority), Article 34 …
30 April 2020
… The Swedish Data Protection Authority issues fine against the National … Government Service Centre 30 April 2020 Sweden The Swedish Data Protection Authority imposes an administrative fine of … well as the Data Protection Authority about a personal data breach in due time. The Data Protection Authority (DPA) …
21 May 2019
… First Significant Fine Was Imposed for the Breaches of the General Data Protection Regulation in Lithuania 21 May 2019 Lithuania The State Data Protection Inspectorate has imposed an administrative … The State Data Protection Inspectorate has imposed an administrative …
10 May 2019
… Article 5 (Principles relating to processing of personal data) Article 6 (Lawfulness of processing) Keywords Data subject rights E-Commerce Third party access to personal data Outcome No violation Summary 89KB Download Decision … police. The third party access to the complainant personal data seems to indicate that his personal data have not been …
18 November 2025
… Finnish SA: S-Bank fined for data security vulnerability 18 November 2025 Finland … Article 5 (Principles relating to processing of personal data), Article 25 (Data protection by design and by … design and by default, Administrative fine, Personal data breach Summary of the Decision Origin of the case The …