Search results | European Data Protection Board

Norwegian DPA issues reprimand to Telenor for inadequate protection of personal data
12 February 2021
News
… have been breached: Violation of Article 32 (1) of the GDPR, by failing to implement appropriate technical and … appropriate to the risk. Violation of Article 33 of the GDPR, by failing to notify the personal data breach to the … have been breached: Violation of Article 32 (1) of the GDPR, by failing to implement appropriate technical and …
EDPB Specific Privacy Statements
… and the EDPB on the interplay between the DMA and the GDPR EDPB-EDPS Support Pool of Experts – Cycle 2 EDPB Public … and the EDPB on the interplay between the DMA and the GDPR EDPB-EDPS Support Pool of Experts – Cycle 2 EDPB Public …
Spanish Data Protection Authority (AEPD) imposes fine of 70.000 EUR on XFERA MOVILES
18 August 2020
News
… of confidentiality, established in Article 5(1)(f) of the GDPR. You can read the text of the decision here . For … of confidentiality, established in Article 5(1)(f) of the GDPR. You can read the text of the decision here . For …
Europrivacy
… and Target of Evaluation v60 EP-C.G - Europrivacy GDPR Core Criteria v60 EP-C.T - Technical and Organisational … as European Data Protection Seal pursuant to Article 42.5 (GDPR) 10 October 2022 Publication Type: Opinion of the Board …
The Norwegian SA fines Krokatjønnvegen 15 AS
20 January 2023
News
… of processing (Article 6) Decision: Infringement of the GDPR, Administrative fine and Order to comply Key words: … of processing (Article 6) Decision: Infringement of the GDPR, Administrative fine and Order to comply Key words: …
Astra Zeneca
1 July 2014
… Clients, customers Suppliers, service providers Pre-GDPR Yes …
Zendesk
1 July 2017
… Clients, customers Suppliers, service providers Pre-GDPR Yes …
Zendesk
1 July 2017
… Clients, customers Suppliers, service providers Pre-GDPR Yes …
Iceland Authorisation for the use of an Administrative Arrangement between EEA and non-EEA Financial Supervisory Authorities
16 August 2019
Decision by the SA
… of an Administrative Arrangement pursuant to Article 46.3.b GDPR 258.5KB Download Opinion / Binding decision References … (8) of Act nr. 90/2018 and Article 46, para. 3. b of the GDPR. In the aforementioned request a reference is made to … para. 1 of Act nr. 90/2018 and Article 46, para. 3.b of the GDPR, and having regard to the content of the administrative …
Twilio
1 July 2018
… Clients, customers Suppliers, service providers Pre-GDPR Yes …
Twilio
1 July 2018
… Clients, customers Suppliers, service providers Pre-GDPR Yes …
Administrative fine imposed on psychotherapy centre Vastaamo for data protection violations
5 January 2022
News
… Accountability (Art. 5(2)) Decision: Infringement of the GDPR, administrative fine and reprimand Key words: personal … Ombudsman issued Vastaamo a reprimand on violating the GDPR. The sanctions board of the Office of the Data … Accountability (Art. 5(2)) Decision: Infringement of the GDPR, administrative fine and reprimand Key words: personal …
Polish SA: administrative fine of 5 625 € for failure to implement appropriate technical and organisational measures to ensure security
6 February 2025
News
… data in compliance with the principles expressed in the GDPR. Losing a laptop is losing a laptop represents an … ZHP for infringement of Articles 5, 24, 25 and 32 of the GDPR. Chorągiew was ordered to implement appropriate data … data in compliance with the principles expressed in the GDPR. Losing a laptop is losing a laptop represents an …
Polish SA: administrative fine of EUR 1 170 for Social Welfare Centre and EUR 2 341 EUR for Mayor of Aleksandrów for ignoring the risk of ransomware attack
25 September 2025
News
… Article 24 (1), 25 (1), 28 (1) 32 (1,2), and 33 (1) of the GDPR, as well as on Mayor of Aleksandów an administrative … 32 (1,2) in connection with Article 28 (3)(c,f) of the GDPR. For further information: • National press release: … Article 24 (1), 25 (1), 28 (1) 32 (1,2), and 33 (1) of the GDPR, as well as on Mayor of Aleksandów an administrative …
Camera surveillance during daytime is justified at Swedish school to prevent fires
3 October 2023
News
… of personal data pursuant to Article 6(1)(c) of the GDPR. However, the national legal regulation may form the basis for the processing under Article 6(1)(e) GDPR. IMY concluded that fires are serious and can pose a … of personal data pursuant to Article 6(1)(c) of the GDPR. However, the national legal regulation may form the …
Polish SA: administrative fine of 262 500 € for hidden video surveillance in neonatology department and failure to implement appropriate security measures
2 May 2025
News
… Article 6(1), 9(1) in relation with Article 13(1,2) of the GDPR and a fine of 105 000 € for infringement of Articles 24(1), 25(1,) and 32(1,2) of the GDPR. Total amount of imposed fine on Centrum Medyczne … Article 6(1), 9(1) in relation with Article 13(1,2) of the GDPR and a fine of 105 000 € for infringement of Articles …
Giesecke + Devrient GmbH
1 July 2018
… Clients, customers Suppliers, service providers Pre-GDPR Yes …
Giesecke + Devrient GmbH
1 July 2018
… Clients, customers Suppliers, service providers Pre-GDPR Yes …
Norsk Hydro
1 July 2018
… of the Group’s respective regular business activities. Pre-GDPR Yes …
European Data Protection Board - Sixth Plenary session: Privacy Shield, Brexit, clinical trials Q&A, DPIA lists, guidelines on certification, EDPB answer to Australian SA on data breach notification
24 January 2019
Press releases
… an important tool for the consistent application of the GDPR across the EEA. DPIA is a process to help identify and … mechanisms issued in accordance with art. 42 and art. 43 GDPR. As such, the guidelines explore the rationale for … criteria in accordance with art. 42 and art. 43 GDPR. The annex will be subject to public consultation. …