10 June 2021
… patient website 10 June 2021 Netherlands The Dutch Data Protection Authority (DPA) has imposed a €12,000 fine on an … website. As a result, patients’ sensitive personal data, such as their citizen service number (BSN), could have …
25 February 2020
… controller) Article 32 (Security of processing) Keywords Data security Password Right of access Outcome Reprimand … of emails between the CNIL and your company's Data Protection Officer (hereinafter referred to as "DPO") in the context of …
5 March 2020
… a school 5 March 2020 Poland The President of the Personal Data Protection Office imposed a fine of PLN 20 000 in connection … with the breach consisting in the processing of biometric data of children when using the school canteen. The school …
11 February 2021
… Lindstrand Trading AS 11 February 2021 Norway The Norwegian Data Protection Authority has decided to issue a fine of EUR 10 … or other association with Lindstrand Trading. The General Data Protection Regulation requires that all processing of …
28 October 2021
… lawfulness, fairness and transparency (article 5 (1) (a)), data minimisation (article 5 (1) (c)), Transparent … relating to CCTV monitoring of salon premises, the Data Protection Authority has concluded that the enterprise …
4 June 2020
… Article 5 (Principles relating to processing of personal data) Keywords Data subject rights Identity verification Outcome No … www.datenschutz.hessen.de THE HESSIAN COMMISSIONER FOR DATA PROTECTION AND FREEDOM OF INFORMATION 04 June 2020 Final …
3 June 2020
… Article 32 (Security of processing) Keywords Personal data breach Outcome Reprimand Summary 60.4KB Download … … J.No. 2019-441-3337 Doc.no. 167462 Caseworker The Danish Data Protection Agency Borgergade 28, 5. 1300 Copenhagen Denmark …
… of 23 October 2018. Article 62 provides that the European Data Protection Supervisor (EDPS) and the national supervisory … coordinating the supervision of the processing of personal data in an EU large scale IT system or body, office or …
12 September 2019
… of processing operations exempt from the requirement for a Data Protection Impact Assessment under Art 35(5) of the General Data Protection Regulation (EU) 2016/679 (GDPR) Decision …
17 September 2020
… Roads Administration 17 September 2020 Norway The Norwegian Data Protection Authority has issued the Norwegian Public Roads … a fine of 37,400 EUR (400 000 NOK) for processing personal data for purposes that were incompatible with the originally …
13 May 2021
… regulations Having investigated the matter, the Norwegian Data Protection Authority concluded that the business lacked a … the business drawn up procedures for access to e-mails. The Data Protection Authority pointed out that an improvement in …
1 July 2021
… solutions for consent 1 July 2021 Norway The Norwegian Data Protection Authority has ordered the company Smartere … in order to comply with the requirements of the General Data Protection Regulation (GDPR). This is in response to a …
13 May 2021
… of Asker fined 13 May 2021 Norway The Norwegian Data Protection Authority has fined Asker municipality EUR … Municipality was fined for publishing confidential personal data and National Identity Numbers (NID) on its website. The …
28 October 2021
… Decision Origin of the case Image files containing health data about people with no connection to the municipality … to staff at the health clinic. Key Findings The Norwegian Data Protection Authority noted that the municipality did not …
25 November 2020
… 25 November 2020 Poland The President of the Personal Data Protection Office, after having conducted ex officio proceedings relating to breach of personal data protection of persons subject to medical quarantine by …
5 January 2021
… based in Warsaw, which, as the controller of personal data, did not meet the obligation of cooperation with the … is closely related to obtaining and processing of personal data. The personal data protection regulations and the obligations they impose on …
21 March 2019
… Hungarian SA investigation regarding data breach of the Democratic Coalition (DK) 21 March 2019 … the NAIH was informed by a Hungarian citizen, that the database containing personal data of the party’s supporters … an administrative control procedure, which led into a data protection administrative procedure regarding to Article 9 …
17 December 2020
… against housing company 17 December 2020 Sweden The Swedish Data Protection Authority has issued an administrative fine of … video surveillance in an apartment building. The Swedish Data Protection Authority (DPA) received a complaint …
26 July 2019
… operations which are subject to the requirement for a Data Protection Impact Assessment under Article 35(4) of the General Data Protection Regulation (EU) 2016/679 (GDPR) Decision …
28 October 2021
… Key Findings Upon investigating this matter, The Norwegian Data Protection Authority have concluded that the credit rating … basis, in violation of the requirements of the General Data Protection Regulation. The undertaking did not have a …