15 November 2018
… operations which are subject to the requirement for a Data Protection Impact Assessment under Article 35(4) of the … Guidelines WP 243 rev.01 “Guidelines on Data Protection Officers (‘DPOs’)” • Further information on profiling, …
… Strategy to streamline enforcement and cooperation among Data Protection Authorities (DPAs). Each year, DPAs select the … on the designation and position of data protection officers (DPOs), 2023 Coordinated Enforcement Action, …
7 October 2019
… of a fine for breach of the principle of accuracy and data protection by design when keeping personal data of subscribers The Hellenic DPA has received complaints …
25 November 2020
… Østfold HF Hospital 25 November 2020 Norway The Norwegian Data Protection Authority has decided on an administrative fee of … the safe zone. The case started with a notice of personal data breach from the hospital. The folders where the …
20 October 2020
… Guidelines 4/2019 on Article 25 Data Protection by Design and by Default 20 October 2020 … of processing. Where the controller has a Data Protection Officer (DPO), the EDPB encourages the active involvement of …
28 October 2019
… Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data …
26 June 2020
… donors for fundraising 26 June 2020 Belgium The Belgian Data Protection Authority has imposed a fine of 1,000 EUR on an … was imposed following a complaint lodged with the Belgian Data Protection Authority by a former donor of the …
26 November 2021
… the Ministry of Industries and Innovation and YAY ehf. for data processing through a digital gift card app 26 November … References: Principles relating to processing of personal data (Article 5), Lawfulness of processing (Article 6), … 13), Responsibility of the controller (Article 24), Data protection by design and by default (Article 25), Processing …
8 February 2019
… operations which are subject to the requirement for a Data Protection Impact Assessment under Article 35(4) of the General Data Protection Regulation (EU) 2016/679 (GDPR) Decision …
1 July 2021
… Innovation Norway fined 1 July 2021 Norway The Norwegian Data Protection Authority has fined Innovation Norway EUR 100,000 … their enterprise, to justify these credit ratings,” says Data Protection Authority Director Bjørn Erik Thon. The fine …
26 January 2021
… on the processing performed by TikTok with regard to the data of users whose age could not be established with … infringements to TikTok including poor attention to the protection of minors, the easy dodging of the registration … the Italian SA banned TikTok from further processing the data relating to any user ‘whose age could not be …
19 June 2020
… in entrance and stairwell 19 June 2020 Sweden The Swedish Data Protection Authority (DPA) has investigated a co-operative … has now finished an audit of the association. The Swedish Data Protection Authority’s investigation shows that the …
27 April 2021
… also a failure to cooperate 27 April 2021 Poland The Polish Data protection Authority, stating that PNP SA with its … office in Warsaw violated the provisions of the General Data Protection Regulation, imposed an administrative fine …
18 November 2019
… 12 paragraphs (3) and (4) and of Article 15 of the General Data Protection Regulation; the infringement of Article 5 … the right of access provided by Article 15 of the General Data Protection Regulation, as well as the fact that it …
5 May 2022
… and fine imposed Key words: special categories of personal data, unauthorised access Summary of the Decision Origin … public access, which they should have been. The executive officer failed to notice this, and the document passed … is a violation of Article 32 (1) (b) of the General Data Protection Regulation, which requires implementation of a …
9 June 2021
… privacy of sick employees 9 June 2021 Netherlands The Dutch Data Protection Authority (DPA) has imposed a fine of €15,000 on … about such things. That is for the in-house medical officer or the safety, health and welfare services to …
2 October 2019
… PL Main legal reference Article 15 (Right of access by the data subject) Article 5 (Principles relating to processing … complainant filed a complaint against ith the Austrian data protection authority ("ÖDSB") regarding the roof of parental … oral request for comment to the company's data protection officer on 15 th January 2019, the was informed that does …
17 October 2019
… The Spanish Data Protection Authority fined the company Vueling for the … evaluations and statistical calculations on anonymous data, indicating "such information will not be used for any …
4 May 2021
… green pass and it is affected additionally by several data protection shortcomings including the lack of any assessment … Contrary to the requirements laid down in the EU General Data Protection Regulation, the decree does not specify the …
27 July 2020
… on July 9th on account of several instances of unlawful data processing that were mostly related to marketing. The … similar infringements that had occurred when the previous data protection law was in force. The fine was imposed following …