2 September 2024
… Administrative fine against bank for transferring customer data to Meta 2 September 2024 Sweden Background information … Article 5 (Principles relating to processing of personal data), Article 32 (Security of processing), Article 83 … Administrative fine Key words: Finance, Personal data breach, Administrative fine Summary of the Decision …
7 October 2021
… SA: Police reprimanded for illegal processing of personal data with facial recognition software 7 October 2021 Finland … Reference: Art. 14 in the Act on the Processing of Personal Data in Criminal Matters and in Connection with Maintaining … Security Decision: Reprimand Key words: Personal data breach Summary of the Decision Origin of the case The Deputy …
12 September 2022
… Debt Management Company for unlawful processing of personal data and non-essential examination of rights to object and … fairness and transparency of processing of personal data (Article 5.1a). Principle of accountability (Article … unduly impeded the exercise of the complainant’s rights, in breach of the provision of Article 12(2) of the GDPR, and …
23 September 2021
… Dutch SA fines Transavia for poor personal data security 23 September 2021 Netherlands Ireland France … administrative fine Key words: Security of processing, data security breach Summary of the Decision Origin of the case The … administrative fine Key words: Security of processing, data security breach Summary of the Decision Origin of …
9 December 2020
… International Company made pursuant to Section 111 of the Data Protection Act 2018 Decision Type SA Ireland 9 December 2020 Fines Cybersecurity and data breach IE Final Decision 2MB Download Opinion / Binding … Chosaint Sonraí, 21 Cearnóg Mhic Liam, Baile Átha Cliath 2. Data Protection Commission, 21 Fitzwilliam Square, Dublin 2. …
21 June 2021
… out a fair risk analysis 21 June 2021 Poland The Polish Data Protection Authority has imposed an administrative fine … PLN 160 000 (EUR 35 000) for failing to notify a personal data protection breach. In addition, the company was fined for failing to … The Polish Data Protection Authority has imposed an administrative fine …
8 June 2021
… fines P4 company PLN 100,000 8 June 2021 Poland The Polish Data Protection Authority has imposed an administrative fine … authority within 24 hours after having detected a personal data breach. The reason for the administrative fine is that the … The Polish Data Protection Authority has imposed an administrative fine …
12 February 2021
… imposed on it in an administrative decision. The Personal Data Protection Office (UODO) ordered the entrepreneur to communicate the breach of their personal data to its patients and to provide these persons with … imposed on it in an administrative decision. The Personal Data Protection Office (UODO) ordered the entrepreneur to …
1 July 2025
… Article 5 (Principles relating to processing of personal data), Article 32 (Security of processing), Article 33 (Notification of a personal data breach to the supervisory authority), Article 34 … Article 5 (Principles relating to processing of personal data), Article 32 (Security of processing), Article 33 …
9 June 2023
… Article 5 (Principles relating to processing of personal data), Article 24 (Responsibility of the controller), Article 25 (Data protection by design and by default), Article 32 … by design and by default, Data security, Personal data breach, Responsibility of the controller, Principles …
10 July 2020
… The President of the Personal Data Protection Office imposes a fine in cross-border … 10 July 2020 Poland The President of the Personal Data Protection Office (UODO) imposed a fine of PLN 15 000 … circumstances, among others, the seriousness of the breach (undermining the proper functioning of the personal …
10 March 2025
… provider Sambla Group issued administrative fine for data security neglect 10 March 2025 Finland Background … Article 5 (Principles relating to processing of personal data), Article 25 (Data protection by design and by … Administrative fine, Communication order personal data breach, Reprimand Key words: Data security, Personal data …
20 May 2025
… Slovenian SA: schools must adhere to the principle of data protection by design and by default 20 May 2025 … Controller: High school Legal Reference(s): Article 25 (Data protection by design and by default) … an ex officio inspection after receiving an official data breach notification. A school reported an unauthorized …
8 September 2022
… of Warsaw Legal Reference: Notification of a personal data breach to the supervisory authority (Article 33(1)), Communication of a personal data breach to the data subject (Article 34(1)) Decision: … of Warsaw Legal Reference: Notification of a personal data breach to the supervisory authority (Article 33(1)), …
8 June 2023
… 5 (1)(e)(Principles relating to processing of personal data), Article 6 (Lawfulness of processing), Article 9 (Processing of special categories of personal data), Article 32 (Security of processing), Article 33 (Notification of a personal data breach to the supervisory authority) Decision: …
20 April 2023
… Article 5 (Principles relating to processing of personal data), Article 24 (Responsibility of the controller), Article 25 (Data protection by design and by default), Article 32 … security, Data subject rights, Encryption, Personal data breach, Responsibility of the controller, Technical and …
2 May 2024
… network vulnerabilities, unauthorised access, dark web, data breach, data breach notification, network intrusion, ransomware, … network vulnerabilities, unauthorised access, dark web, data breach, data breach notification, network intrusion, …
20 July 2020
… authority 20 July 2020 The President of the Personal Data Protection Office (UODO) imposed a fine of PLN 5 000 on … provide the President of the UODO with access to personal data and other information necessary for the performance of … for assessment whether the controller communicated a data breach to the data subject in accordance with the GDPR …
25 November 2020
… 25 November 2020 Poland The President of the Personal Data Protection Office, after having conducted ex officio proceedings relating to breach of personal data protection of persons subject to medical quarantine by … The President of the Personal Data Protection Office, after having conducted ex officio …
16 May 2023
… Article 5 (Principles relating to processing of personal data), Article 24 (Responsibility of the controller), Article 25 (Data protection by design and by default), Article 32 … Electronic communications, Hacker attack, Personal data breach, Principles relating to processing of personal data, …