Search results | European Data Protection Board

The President of the Personal Data Protection Office imposes a fine in cross-border proceedings
10 July 2020
News
… it and does not fulfil the obligation – provided for in the GDPR – to provide it with access to personal data and other … of the personal data protection system specified by the GDPR), the intentional nature of the breach and the … it and does not fulfil the obligation – provided for in the GDPR – to provide it with access to personal data and other …
Polish SA: administrative fine of 330 000 € for a medical company after a hacker attack
28 November 2024
News
… 330 000 € for infringement of Article 5, 24 and 32 of the GDPR and has ordered the controller to bring processing … operations into compliance with the provisions of GDPR). For further information: Decision in national … 330 000 € for infringement of Article 5, 24 and 32 of the GDPR and has ordered the controller to bring processing …
ARDIAN(previously known as AXA PRIVATE EQUITY)
1 July 2013
… of the Group’s respective regular business activities. Pre-GDPR Yes … ARDIAN(previously known as AXA PRIVATE EQUITY) …
Marsh and McLennan Companies Inc.
1 July 2017
… of the Group’s respective regular business activities. Pre-GDPR Yes … Marsh and McLennan Companies Inc. …
Marsh and McLennan Companies Inc.
1 July 2017
… of the Group’s respective regular business activities. Pre-GDPR Yes … Marsh and McLennan Companies Inc. …
Norwegian DPA: Waxing Palace AS fined
28 October 2021
News
… to be in breach of the General Data Protection Regulation (GDPR). The fine amount is based on an overall assessment, … to be in breach of the General Data Protection Regulation (GDPR). The fine amount is based on an overall assessment, …
Swedish DPA: Investigation of 1177-incident finalized
11 June 2021
News
… calling 1177 with information according to the rules in the GDPR and the Patient Records Act, for example how their … and medical care laid down by law. This is a breach of the GDPR’s principle of lawfulness. Further to the … on behalf of Medhelp. The Data Protection Regulation, the GDPR, lays down obligations also for processors, i.e. …
Norwegian SA issues administrative fine to the University of Agder
5 November 2024
News
… EUR 12 700 on the University of Agder for violation of the GDPR. The University had not taken appropriate measures to … EUR 12 700 on the University of Agder for violation of the GDPR. The University had not taken appropriate measures to …
Data Protection Code of Conduct for Cloud Infrastructure Service Providers
3 June 2021
Decision by the SA
… France Type Code for Controllers/Processors subject to GDPR Scope Transnational Monitoring Body EY CERTIFYPOINT BV … 2021_cispe_cloud_iaas_data_protection_code_of_conduct_-_gdpr_compliance.pdf 1.4MB Download file 1 …
First fine by the Romanian Supervisory Authority
26 June 2019
News
… safeguards in the processing, in order to meet the GDPR requirements and to protect the rights of the data … statement/details. Pursuant to Article 5 (1) c) of GDPR (“Principles relating to processing of personal data”), … safeguards in the processing, in order to meet the GDPR requirements and to protect the rights of the data …
CEPD identifică domeniile de îmbunătățire pentru a promova rolul și recunoașterea RPD
17 January 2024
Press releases
… și activitatea DPO, la 5 ani de la intrarea în vigoare a GDPR. În pofida unor preocupări și provocări cu care se … există îndoieli. Topics: Cooperation between authorities GDPR enforcement … Bruxelles, 17 ianuarie – În cursul … și activitatea DPO, la 5 ani de la intrarea în vigoare a GDPR. În pofida unor preocupări și provocări cu care se …
Reprimand for disclosure of the list of quarantined persons
25 November 2020
News
… constitutes personal data within the meaning of the GDPR, and the fact that persons are in quarantine … controller is subject to the obligations resulting from the GDPR. UODO also took into account that the confidentiality … to ensure the security of processing. Article 33(1) of the GDPR sets forth that in the case of a personal data breach, …
EU Cloud Code of Conduct
20 May 2021
Decision by the SA
… Belgium Type Code for Controllers/Processors subject to GDPR Scope Transnational Monitoring Body Scope Europe, …
Norwegian DPA issues fine to Gveik AS
11 February 2021
News
… personal purposes The General Data Protection Regulation (GDPR) requires that all processing of personal data must … personal purposes The General Data Protection Regulation (GDPR) requires that all processing of personal data must …
Polish DPA fines Smart Cities: Another fine for lack of cooperation with the Personal Data Protection Office
2 February 2021
News
… supervisory authority within the remit of Article 51 of the GDPR, UODO monitors and enforces the application of this … supervisory authority within the remit of Article 51 of the GDPR, UODO monitors and enforces the application of this …
EDPBI:BE:OSS:D:2019:6
29 January 2019
… complaint, despite the obligation provided in Article 12.3 GDPR, according to which the controller shall inform the …
Polish SA: administrative fine of 5 700 € for failure to implement appropriate technical and organisational measures to ensure security
6 February 2025
News
… Kutno for infringement of Articles 5, 24, 25, 28, 32 of the GDPR. An unencrypted pendrive with the personal data of … programme, for infringement of Articles 28 and 32 of the GDPR. For further information: decision in national language … Kutno for infringement of Articles 5, 24, 25, 28, 32 of the GDPR. An unencrypted pendrive with the personal data of …
EDPBI:FR:OSS:D:2019:18
16 May 2019
… be established.Comments The LSA initiated an Article 56 GDPR proceeding for the booking website. … Decision nr 18 …
EDPBI:UK:OSS:D:2019:50
11 September 2019
… to erasure (Article 17) Decision: No infringement of the GDPR Key words: Lawfulness of the processing, Right to …
EDPBI:FR:OSS:D:2019:22
17 June 2019
… processing (Article 32) Decision: No violation of art. 32 GDPR and recommendation on the adoption of technical …