10 June 2022
… confidentiality); Art. 13 and 14 (Information); Art. 25 (Data protection by design and by default); Art. 28 (Processor); … given in this respect by the Hospital’s Data Protection Officer (DPO). The whistle-blowing service provider had not … confidentiality); Art. 13 and 14 (Information); Art. 25 (Data protection by design and by default); Art. 28 …
24 February 2022
… Hungarian SA fines car importer for unlawful data processing practices related to satisfaction … processing under Article 5(1)(a); information to data subjects under Article 12(1) and Article 13 of the … order to bring practices into line with the GDPR, data protection fine of HUF 5 million (approx. EUR 14 000) Key …
28 January 2020
… Guidelines 1/2020 on processing personal data in the context of connected vehicles and mobility … reference: 1/2020 Guidelines 1/2020 on processing personal data in the context of connected vehicles and mobility … Topics: New Technology e-Privacy The European Data Protection Board welcomes comments on the Guidelines 1/2020 …
14 March 2024
… SA: administrative fine for failure to notify a personal data breach 14 March 2024 Poland Background information Date … Legal Reference(s): Article 33 (Notification of a personal data breach to the supervisory authority), Article 34 … authority. Key Findings In the case concerned, the protection of the personal data of seven persons was …
18 October 2021
… erasure does not enable an individual to have his personal data erased from Baptismal Register 18 October 2021 Slovenia … the right of erasure. The individual requested his personal data to be erased from the Baptismal Register, because he … for the processing of data in the register is mainly the Protection of Documents and Archives and Archival …
20 December 2022
… Processing the personal data by a processor must be documented 20 December 2022 … of the case The Polish SA has been notified of a personal data breach at the Sułkowice Cultural Centre. In the course … and its guarantees for processing in accordance with data protection regulations may entail consequences for …
2 February 2022
… Article 5 (Principles relating to processing of personal data) Article 6 (Lawfulness of processing) Article 7 … Article 32 (Security of processing) Article 35 (Data protection impact assessment) Article 37 (Designation of the data protection officer) Keywords Advertising E-Commerce Lawfulness of …
22 April 2021
… with a long delay. Because of this negligence the Polish Data Protection Authority imposed a fine on the company in the … of over PLN 1.1 million. Lost correspondence with personal data or delivery of such a mail to the wrong recipient - … with a long delay. Because of this negligence the Polish Data Protection Authority imposed a fine on the company in …
4 September 2023
… shortcomings in fulfilling the client's right of access to data 4 September 2023 Finland Background information Date of … and modalities for the exercise of the rights of the data subject) Decision: Administrative fine, Reprimand Key … the duty of care and responsibility for fulfilling the data protection rights of the data subject are emphasised in …
27 July 2022
… of coordinated inspection of the compliance of personal data processing in the field of short-term vehicle rental 27 … preventive supervision on the compliance of personal data processing in the field of short-term vehicle rental. … developing recommendations for improving the processing and protection of personal data, follows from the 2021 meeting …
23 January 2019
… the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR) 23 January … the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR) Adopted on … the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR) …
2 October 2019
… PL Main legal reference Article 15 (Right of access by the data subject) Article 5 (Principles relating to processing of personal data) Keywords Identity verification Legal age Right of … complainant filed a complaint against ith the Austrian data protection authority ("ÖDSB") regarding the roof of …
3 October 2018
… the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR) 3 October … the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR) Adopted on … the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR) …
3 October 2018
… the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR) 3 October … the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR) Adopted on … the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR) …
10 June 2021
… ensure the current validity of a green pass in line with data protection principles; furthermore, checks based on this app will only disclose the data subject’s name without displaying any other information … ensure the current validity of a green pass in line with data protection principles; furthermore, checks based on …
14 October 2021
… the past, the company carried out comparisons with customer data from previous years, which had been stored according to … After examining the process, the Hamburg Commissioner for Data Protection and Freedom of Information came to the conclusion … the past, the company carried out comparisons with customer data from previous years, which had been stored according to …
11 June 2021
… 11 June 2021 Sweden The Swedish Authority for Privacy Protection (IMY) has finalized its investigation of an … says. Medhelp is the medical care provider and personal data controller. In this capacity, they are the ones … to ensure an adequate level of security to protect personal data – in this case voice recordings – so that unauthorized …
3 October 2018
… the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR) 3 October … the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR) Adopted on … the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR) …
14 March 2024
… fine of € 24.000 for failure to notify a personal data breach 14 March 2024 Poland Background information Date … October 2023 National case Legal Reference(s): Article 35 (Data protection impact assessment), Article 83 (General … October 2023 National case Legal Reference(s): Article 35 (Data protection impact assessment), Article 83 (General …
19 January 2023
… (Responsibility of the controller), Article 25 (1) (2) (Data protection by design and by default), Article 32 (1) (2) … and (2) GDPR (Principles relating to processing of personal data), Article 57 (1) (a) and (h) GDPR, Article 58 (2) (i) … (Responsibility of the controller), Article 25 (1) (2) (Data protection by design and by default), Article 32 (1) …