23 September 2021
… Information (Article 14 GDPR), Right of access by the data subject (Article 15 GDPR) Decision: Infringement of the … Key Findings Having investigated the complaint, the Data Protection Authority concluded that the enterprise had … Information (Article 14 GDPR), Right of access by the data subject (Article 15 GDPR) Decision: Infringement of the …
29 June 2020
… to erasure (‘right to be forgotten’)) Keywords Consumer protection Outcome Reprimand Summary 62.2KB Download … Hatóság (Hungarian National Authority for Data Protection and Freedom of Information, hereinafter: the … complainant. As a result of an administrative error, the data controller failed to inform the complainant about the …
15 July 2025
… Article 5 (Principles relating to processing of personal data), Article 6 (Lawfulness of processing), Article 9 (Processing of special categories of personal data) Decision: Administrative fine Key words: … recalled that, according to the GDPR and the Italian Data Protection Code, the use of biometric data in the workplace …
26 October 2020
… for the processing 26 October 2020 Norway The Norwegian Data Protection Authority has issued Odin Flissenter AS (Tile … about a sole proprietorship is regarded as personal data, as the owner is directly identified with the … The Norwegian Data Protection Authority has issued Odin Flissenter AS …
26 November 2021
… the Ministry of Industries and Innovation and YAY ehf. for data processing through a digital gift card app 26 November … References: Principles relating to processing of personal data (Article 5), Lawfulness of processing (Article 6), … 13), Responsibility of the controller (Article 24), Data protection by design and by default (Article 25), Processing …
6 November 2019
… 6 November 2019 Poland The President of the Personal Data Protection Office imposed an administrative fine of over PLN … the right to withdraw consent to the processing of personal data. The company - ClickQuickNow Sp. z o.o. did not … The President of the Personal Data Protection Office imposed an administrative fine of …
25 September 2025
… Article 5 (Principles relating to processing of personal data), Article 6 (Lawfulness of processing) Decision: … fine Key words: Administrative fine, Anti-Money Laundering, Data security, Lawfulness of processing, Data subject rights, Data protection by design and by default Summary of the Decision …
13 May 2021
… fined for use of Strava 13 May 2021 Norway The Norwegian Data Protection Authority has fined Ålesund municipality EUR … sessions and enables them to analyse and compare their data with their own previous performance or others’ training … The Norwegian Data Protection Authority has fined Ålesund municipality EUR …
30 March 2021
… formal supervisory measures regarding a complaint by a data subject, in which the controller (an individual … and translated informally: "... We are referring to your data protection complaint against .... concerning the use of … formal supervisory measures regarding a complaint by a data subject, in which the controller (an individual …
25 November 2020
… Østfold HF Hospital 25 November 2020 Norway The Norwegian Data Protection Authority has decided on an administrative fee of … the safe zone. The case started with a notice of personal data breach from the hospital. The folders where the … The Norwegian Data Protection Authority has decided on an administrative …
7 October 2019
… of a fine for breach of the principle of accuracy and data protection by design when keeping personal data of subscribers The Hellenic DPA has received complaints … of a fine for breach of the principle of accuracy and data protection by design when keeping personal data of …
1 December 2022
… Irish Supervisory Authority announces decision in Facebook “Data Scraping” inquiry 1 December 2022 Ireland Background … (‘Meta Platforms’). Legal Reference: GDPR obligation for Data Protection by Design and Default (Article 25 GDPR). … (‘Meta Platforms’). Legal Reference: GDPR obligation for Data Protection by Design and Default (Article 25 GDPR). …
27 April 2021
… also a failure to cooperate 27 April 2021 Poland The Polish Data protection Authority, stating that PNP SA with its … office in Warsaw violated the provisions of the General Data Protection Regulation, imposed an administrative fine … The Polish Data protection Authority, stating that PNP SA with its …
28 October 2019
… Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data … natural persons with regard to the processing of personal data and on the free movement of such data, and repealing …
26 June 2020
… donors for fundraising 26 June 2020 Belgium The Belgian Data Protection Authority has imposed a fine of 1,000 EUR on an … was imposed following a complaint lodged with the Belgian Data Protection Authority by a former donor of the … The Belgian Data Protection Authority has imposed a fine of 1,000 EUR on …
1 July 2021
… Innovation Norway fined 1 July 2021 Norway The Norwegian Data Protection Authority has fined Innovation Norway EUR 100,000 … their enterprise, to justify these credit ratings,” says Data Protection Authority Director Bjørn Erik Thon. The fine … The Norwegian Data Protection Authority has fined Innovation Norway EUR …
26 January 2021
… on the processing performed by TikTok with regard to the data of users whose age could not be established with … infringements to TikTok including poor attention to the protection of minors, the easy dodging of the registration … the Italian SA banned TikTok from further processing the data relating to any user ‘whose age could not be …
14 October 2025
… 14 October - During its October plenary, the European Data Protection Board (EDPB) picked the topic for its fifth … sector (2023) designation and position of Data Protection Officers (2024) implementation of the right of access by … 14 October - During its October plenary, the European Data Protection Board (EDPB) picked the topic for its fifth …
5 May 2022
… and fine imposed Key words: special categories of personal data, unauthorised access Summary of the Decision Origin … public access, which they should have been. The executive officer failed to notice this, and the document passed … is a violation of Article 32 (1) (b) of the General Data Protection Regulation, which requires implementation of a …
18 November 2019
… 12 paragraphs (3) and (4) and of Article 15 of the General Data Protection Regulation; the infringement of Article 5 … the right of access provided by Article 15 of the General Data Protection Regulation, as well as the fact that it … 12 paragraphs (3) and (4) and of Article 15 of the General Data Protection Regulation; the infringement of Article 5 …