Search results | European Data Protection Board

Swedish SA: Administrative fine against bank for transferring customer data to Meta
2 September 2024
News
… bank has violated the general data protection regulation, GDPR, by not having taken appropriate technical and … bank has violated the general data protection regulation, GDPR, by not having taken appropriate technical and …
Norwegian Supervisory Authority: Mowi ASA reprimanded and ordered to update its procedures
26 April 2022
News
… Key Findings This case is an important reminder that the GDPR's requirement to provide information also applies when … Key Findings This case is an important reminder that the GDPR's requirement to provide information also applies when …
The Norwegian Supervisory Authority has fined the Norwegian Labour Inspection Authority
16 May 2022
News
… by the data subject (Art. 15) Decision: Infringement of the GDPR and fine imposed, Reprimand Key words: Credit rating … by the data subject (Art. 15) Decision: Infringement of the GDPR and fine imposed, Reprimand Key words: Credit rating …
Norwegian Supervisory Authority issues fine to Trumf
22 June 2022
News
… of Processing (Art. 32) Decision: Infringement of the GDPR and fine imposed Key words: unauthorised access, Lack … of Processing (Art. 32) Decision: Infringement of the GDPR and fine imposed Key words: unauthorised access, Lack …
Icelandic SA: administrative fine imposed on the Primary Health Care of the Capital area for the unlawful processing in relation to the integration of medical record systems.
7 March 2025
News
… lawfulness of the processing (Articles 5.1 (a), 6.1 and 9.1 GDPR). Decision The Icelandic SA imposed a fine of 33 854 … lawfulness of the processing (Articles 5.1 (a), 6.1 and 9.1 GDPR). Decision The Icelandic SA imposed a fine of 33 854 …
Codigo de conducta regulador del tratamiento de datos personales en los sistemas comunes de informacion del sector asegurador
15 September 2022
Other
… Spain Type Code for Controllers/Processors subject to GDPR Scope National Código de conducta regulador del …
Ivoclar Vivadent Group
23 July 2024
… 331.8KB German English Download Pre-GDPR No …
Viega Group
2 December 2024
… National Decision (EN) 194.1KB German English Download Pre-GDPR No …
CoC regulating the sector of telemarketing and tele-selling
7 March 2024
Other
… Italy Type Code for Controllers/Processors subject to GDPR Scope National Monitoring Body (website under …
CoC regulating the processing of personal data related to commercial information
29 April 2021
Other
… Italy Type Code for Controllers/Processors subject to GDPR Scope National Monitoring Body Organismo di …
CoC regulating credit assessment systems managed by private entities
6 October 2022
Other
… Italy Type Code for Controllers/Processors subject to GDPR Scope National Monitoring Body Organismo di …
EU Cloud Code of Conduct
20 May 2021
Decision by the SA
… Belgium Type Code for Controllers/Processors subject to GDPR Scope Transnational Opinion/Guideline References …
Decision of the Data Protection Commission made pursuant to Section 111 of the Data Protection Act, 2018 and Articles 60 and 65 of the General Data Protection Regulation
22 May 2023
Binding decision of the Board (Art. 65)
… Platforms Ireland Limited for its Facebook service (Art. 65 GDPR) …
Polish DPA imposes a fine on Pactum Poland Sp. z o.o. for lack of cooperation
24 February 2022
News
… 31), Powers (Art. 58 (1)(e)) Decision: infringement of GDPR, fine issued Key words: investigative powers, lack of … 31), Powers (Art. 58 (1)(e)) Decision: infringement of GDPR, fine issued Key words: investigative powers, lack of …
Vinted investigation signals closer and stronger cooperation between personal data protection supervisory authorities
2 June 2022
Press releases
… cooperation to investigate compliance of this website with GDPR. After the working group was formed, the Dutch … cooperation to investigate compliance of this website with GDPR. After the working group was formed, the Dutch …
Decision in the matter of Meta Platforms Ireland Limited and the "Instagram" social media network made pursuant to Section 111 of the Data Protection Act 2018
15 September 2022
Binding decision of the Board (Art. 65)
… Ireland Limited (Instagram) under Article 65(1)(a) GDPR …
Code of Conduct for Service Providers in Clinical Research
12 September 2024
Decision by the SA
… France Type Code for Controllers/Processors subject to GDPR Scope Transnational Opinion/Guideline References …
Polish SA: Not just negative consequences, but the risk of their occurrence as a reason for breach notification
3 March 2022
News
… data subject (Article 34(1)) Decision: Infringement of the GDPR, administrative fine Key words: information … data subject (Article 34(1)) Decision: Infringement of the GDPR, administrative fine Key words: information …
Personal data breach at the National Center of Addiction Medicine – Administrative fine
10 March 2020
News
… violations of, inter alia, Art. 5(1)f and Art. 32 of the GDPR. When determining the fine, the SA referred to the … violations of, inter alia, Art. 5(1)f and Art. 32 of the GDPR. When determining the fine, the SA referred to the …
The Icelandic SA: fine imposed on Harpa Concert Hall for the collection of the ID number and date of birth of a data subject
24 May 2022
News
… of processing (Article 6) Decision: infringement of the GDPR, order to comply, fine 1 million ISK (approx. 7.200 … of processing (Article 6) Decision: infringement of the GDPR, order to comply, fine 1 million ISK (approx. 7.200 …