1 July 2021
… solutions for consent 1 July 2021 Norway The Norwegian Data Protection Authority has ordered the company Smartere … in order to comply with the requirements of the General Data Protection Regulation (GDPR). This is in response to a … The Norwegian Data Protection Authority has ordered the company Smartere …
28 October 2021
… lawfulness, fairness and transparency (article 5 (1) (a)), data minimisation (article 5 (1) (c)), Transparent … relating to CCTV monitoring of salon premises, the Data Protection Authority has concluded that the enterprise … lawfulness, fairness and transparency (article 5 (1) (a)), data minimisation (article 5 (1) (c)), Transparent …
13 May 2021
… of Asker fined 13 May 2021 Norway The Norwegian Data Protection Authority has fined Asker municipality EUR … Municipality was fined for publishing confidential personal data and National Identity Numbers (NID) on its website. The … The Norwegian Data Protection Authority has fined Asker municipality EUR …
10 October 2019
… SK Main legal reference Article 15 (Right of access by the data subject) Article 17 (Right to erasure (‘right to be … Article 21 (Right to object) Keywords Advertising Data subject rights Right to erasure Right to object Outcome … REPUBLIC OF CYPRUS OFFICE OF THE COMMISSIONER FOR PERSONAL DATA PROTECTION Our ref. 11.17.001.006.052 10 October 2019 …
10 October 2019
… SK Main legal reference Article 15 (Right of access by the data subject) Article 21 (Right to object) Keywords Advertising Data subject rights Right of access Right to object Outcome … REPUBLIC OF CYPRUS OFFICE OF THE COMMISSIONER FOR PERSONAL DATA PROTECTION Our ref. 11.17.001.007.188 10 October 2019 …
17 December 2019
… Main legal reference Article 33 (Notification of a personal data breach to the supervisory authority) Article 34 (Communication of a personal data breach to the data subject) Keywords Hacker attack Personal data breach … users’ sessions to be taken over and part of their profile data being accessed (e.g. posts and comments on fo- rum and …
25 June 2019
… and modalities for the exercise of the rights of the data subject) Article 17 (Right to erasure (‘right to be … Article 5 (Principles relating to processing of personal data) Keywords Data subject rights Right to erasure Transparency Outcome … J.No. 2018-7320-0166 Doc.no. 137612 Caseworker The Danish Data Protection Agency Borgergade 28, 5. 1300 Copenhagen …
17 December 2020
… against housing company 17 December 2020 Sweden The Swedish Data Protection Authority has issued an administrative fine of … video surveillance in an apartment building. The Swedish Data Protection Authority (DPA) received a complaint … The Swedish Data Protection Authority has issued an administrative fine …
16 October 2018
… operations which are subject to the requirement for a Data Protection Impact Assessment under Article 35(4) of the General Data Protection Regulation (EU) 2016/679 (GDPR) Decision … fields of application Examples 1 Processing of biometric data for the unique identification of natural per- sons if …
15 October 2018
… operations which are subject to the requirement for a Data Protection Impact Assessment under Article 35(4) of the General Data Protection Regulation (EU) 2016/679 (GDPR) Decision … 15.10.2018 1 (3) Office of the Data Protection Ombudsman P.O. Box 800, FIN-00521 Helsinki, …
6 November 2018
… operations which are subject to the requirement for a Data Protection Impact Assessment under Article 35(4) of the General Data Protection Regulation (EU) 2016/679 (GDPR) Decision … adoption of the list of processing operations for which a data protection impact assessment (DPIA) is required …
5 August 2020
… Main legal reference Article 33 (Notification of a personal data breach to the supervisory authority) Article 34 (Communication of a personal data breach to the data subject) Keywords Hacker attack Personal data breach … DD 126889 FD 142710 Final Decision 1. Facts concerning the data breach - Controller: AWIN AG - Incident: Credential …
16 March 2019
… operations which are subject to the requirement for a Data Protection Impact Assessment under Article 35(4) of the General Data Protection Regulation (EU) 2016/679 (GDPR) Decision … Norwegian Data Protection Authority UNOFFICIAL TRANSLATION Postal Address: … operations which are subject to the requirement for a Data Protection Impact Assessment under Article 35(4) of the …
27 September 2019
… operations which are subject to the requirement for a Data Protection Impact Assessment under Article 35(4) of the General Data Protection Regulation (EU) 2016/679 (GDPR) Decision … Decision concerning list of types of processing of personal data for which a data protection impact assessment (DPIA) is …
28 October 2021
… Decision Origin of the case Image files containing health data about people with no connection to the municipality … to staff at the health clinic. Key Findings The Norwegian Data Protection Authority noted that the municipality did not … Decision Origin of the case Image files containing health data about people with no connection to the municipality …
25 September 2025
… case concerns a complaint to the President of the Personal Data Protection Office lodged by an individual in 2021 about … irregularities in the processing of his or her personal data by an entrepreneur from Silesia voivodeship. That was … case concerns a complaint to the President of the Personal Data Protection Office lodged by an individual in 2021 about …
11 October 2018
… operations which are subject to the requirement for a Data Protection Impact Assessment under Article 35(4) of the General Data Protection Regulation (EU) 2016/679 (GDPR) Decision … natural persons with regard to the processing of personal data and on the free movement of such data, and repealing …
18 October 2018
… operations which are subject to the requirement for a Data Protection Impact Assessment under Article 35(4) of the General Data Protection Regulation (EU) 2016/679 (GDPR) Decision … operations which are subject to the requirement for a data protection impact assessment Considering the need to …
15 November 2018
… operations which are subject to the requirement for a Data Protection Impact Assessment under Article 35(4) of the General Data Protection Regulation (EU) 2016/679 (GDPR) Decision … List of Types of Data Processing Operations which require a Data Protection Impact Assessment. Introduction Article 35 of the …
11 February 2021
… its obligations as a controller. According to the Personal Data Protection Office, the controller did not take the necessary … measures in order to ensure the security of personal data contained in the copy of the database of the training … its obligations as a controller. According to the Personal Data Protection Office, the controller did not take the …