31 October 2019
… 40,000 on a public entity for failure to comply with the GDPR. The reason for imposing the fine was that the mayor of … of the Office concluded that Article 28 (3) of the GDPR had been violated. This provision obliges the … of lawfulness of processing (Article 5(1)(a) of the GDPR) and the principle of confidentiality (Article 5(1)(f) …
… of the General Data Protection Regulation (hereinafter: GDPR) 1 . The aim of the coordinated enforcement action is … data protection officers are in accordance with Art. 37-39 GDPR and they have the resources needed to carry out their … protection officer in any case pursuant to Art. 37 1. (a) GDPR 2 . The Authority intends to implement the CEF in the …
15 April 2024
… Key Findings The French SA found several breaches of the GDPR: Failure of the obligation to have a legal basis for processing data (Article 6 GDPR). The misleading appearance of the data collection … not have a valid legal basis for data collection (Article 6 GDPR) for commercial prospecting by phone calls. It also …
14 October 2025
… information under the General Data Protection Regulation (GDPR) . The GDPR ensures that individuals are informed when their data … the right to erasure or the “right to be forgotten” (Art.17 GDPR) . The report on the outcome of this action will be …
27 May 2018
… prečo sa zúčastnené strany obávajú nadobudnutia účinnosti GDPR 25. mája 2018. GDPR nedovoľuje národným dozorným orgánom ani Európskemu … osobných údajov, kedykoľvek usúdia, že ich práva podľa GDPR boli porušené. Orgány na ochranu osobných údajov …
28 May 2021
… Contractual Clauses submitted by the LT SA (Article 28(8) GDPR) Response to Mr. de Serpa Soares, … to identify a controller’s main establishment under the GDPR Letter to the European Commission on the protection of … Contractual Clauses submitted by the LT SA (Article 28(8) GDPR) Response to Mr. de Serpa Soares, …
5 July 2018
… (ICANN), providing guidance to enable ICANN to develop a GDPR-compliant model for access to personal data processed … personal data concerning registrants in compliance with the GDPR, without leading to an unlimited publication of those … (ICANN), providing guidance to enable ICANN to develop a GDPR-compliant model for access to personal data processed …
24 February 2023
… the provisions on international transfers as per Chapter V GDPR : The Guidelines clarify the interplay between the territorial scope of the GDPR (Art. 3) and the provisions on international transfers … design patterns in social media interfaces that infringe on GDPR requirements. The guidelines give concrete examples of …
12 August 2019
… which did not meet the criteria set out in Art. 7 GDPR and also violated its duty to provide information pursuant to Art. 13, 14 GDPR. Moreover, despite handling sensitive data, no data protection impact assessment, pursuant to Art. 35 GDPR, was carried out. The administrative fine is not final …
23 October 2019
… on the basis of the evidence that ÖPAG had violated the GDPR by processing personal data on the alleged political … purpose of direct marketing, as this is not covered by the GDPR. These violations of the GDPR were committed unlawfully and culpably, which is why …
16 June 2020
… processing of his data for marketing purposes (article 15.3 GDPR), and for not collaborating with the authority (article 31 GDPR). In a previous decision, the Belgian DPA had ordered … a complete lack of interest for both the application of the GDPR and the procedure. For this attitude, as well as the …
20 November 2020
… developed by the Commission in accordance with Art. 28 (7) GDPR and Art. 29 (7) of Regulation 2018/1725. These SCCs … data to third countries pursuant to Art. 46 (2) (c) GDPR. These SCCs will replace the existing SCCs for … 95/46 and needed to be updated to bring them in line with GDPR requirements, as well as with the CJEU’s ‘Schrems II’ …
29 July 2022
… a dispute resolution decision on the basis of Art. 65 GDPR . The binding decision seeks to address the lack of … with Art. 5(1)(a) and (c), 6(1), 12(1), 13, 24, 25 and 35 GDPR in respect of certain processing of children’s personal … draft decision with the CSAs in accordance with Art. 60(3) GDPR. Several CSAs issued objections pursuant to Art. 60(4) …
15 January 2024
… Key Findings The French SA found several breaches of the GDPR: Failure to comply with the obligation to retain data … purpose for which it was collected (article 5.1.e of the GDPR) Failure to comply with the obligation to inform individuals (Articles 12 and 13 of the GDPR) Failure to comply with the obligation to ensure the …
4 November 2019
… conjunction with Article 5 paragraph (1) letter f) of the GDPR, which lead to the application of an administrative … the provisions of Article 32 paragraph (1) letter d) of the GDPR. In this context, we mention that Article 25 paragraph (1) of GDPR provides the following: ”Taking into account the state …
27 January 2020
… of personal data", as defined under Article 9(1) of the GDPR. Providing personal data to an automated system, … needs to be in line with the principles defined in the GDPR. The controller carried out an impact assessment of the … issues with specific rules in line with article 88 of the GDPR. After assessing all the elements gathered for the …
23 November 2021
… should be consistent with the obligations laid down in the GDPR and should facilitate the compliance of cloud service providers and their clients with the GDPR, also considering the Schrems II ruling. … During … should be consistent with the obligations laid down in the GDPR and should facilitate the compliance of cloud service …
30 June 2022
… regarding the structural and procedural enforcement of the GDPR and its work to promote and safeguard data protection … concerning Accor SA. In accordance with Art. 65 (5) GDPR, the EDPB will publish its decision on its website … concerning Accor SA. In accordance with Art. 65 (5) GDPR, the EDPB will publish its decision on its website …
… Leaflet Cooperation & consistency procedures under the GDPR Article 65 FAQ One-Stop-Shop Procedure Urgency … Leaflet Cooperation & consistency procedures under the GDPR Article 65 FAQ One-Stop-Shop Procedure Urgency …
2 July 2025
… that the DSP: infringed Articles 5(1)(a), 6(1), and 9(1) GDPR by failing to identify a valid lawful basis for the … regard to the preceding finding, infringed Article 5(1)(e) GDPR by retaining biometric data collected as part of SAFE 2 registration; infringed Articles 13(1)(c) and 13(2)(a) GDPR by failing to put in place suitably transparent …