10 March 2025
… from accessing the data in the loan applications (art. 32 GDPR, art. 25 GDPR and art. 5(1)(f)). Due to poor data security, the … from accessing the data in the loan applications (art. 32 GDPR, art. 25 GDPR and art. 5(1)(f)). Due to poor data …
6 July 2021
… required by the General Data Protection Regulation (GDPR) for carrying out direct marketing. The Office of the … their rights as data subjects in accordance with the GDPR, because the robot could not understand the question of … and the method for obtaining it were not compliant with the GDPR, because consent was not requested separately for …
20 March 2019
… relying on the new powers set out in Article 58 of the EU GDPR. The warning was addressed to the Revenue Agency to … the 15 th of April this year, pursuant to Article 35 of the GDPR. The Garante had already emphasized that the Agency … data protection by design approach that is set forth in the GDPR; indeed, the Garante had pointed out that such a …
6 February 2025
… data. This was because, contrary to the indications of the GDPR the controller had not carried out an adequate risk … so that the processing meets the requirements of the GDPR and protects the rights of data subjects (point I(b) of … to comply with the principle of accountability under the GDPR (Article 5(2)) both before and after the incident. At …
6 February 2025
… bank has failed to comply with its obligations under the GDPR after the personal data of a group of customers was … secrets does not exempt from the application of the GDPR. Decision The President of the Personal Data … 928 498,06 € on mBank for infringement of Article 34 of the GDPR. The fine amount represents 24 thousandths of one per …
14 February 2019
… taken into consideration. Since the EDPB is required by the GDPR (art. 70(4)) to make the results of this consultation … in accordance with the legal requirements provided by the GDPR and, where applicable, by national legislation. 2 SCOPE … of processing operations of controllers under the GDPR without specifying further the area of application …
2 July 2019
… access to his personal data in accordance with Article 15 GDPR. The controller attempted to provide the complainant … months after the deadline established under Article 12 (3) GDPR.Findings The LSA determined that the controller infringed Article 12(3) GDPR by exceeding the deadline to answer the complainant’s …
31 October 2019
… with Article 32 paragraph (1) and paragraph (2) of the GDPR , which led to imposing an administrative fine in the … with Article 32 paragraph (1) and paragraph (2) of the GDPR , as well as of Article 33 paragraph (1) of the GDPR, which led to imposing an administrative fine in the …
10 March 2021
… national authorities responsible for enforcement of the GDPR should be entrusted with the oversight of the privacy … the current ePrivacy Directive, and should complement the GDPR by providing additional strong guarantees for … national authorities responsible for enforcement of the GDPR should be entrusted with the oversight of the privacy …
20 March 2019
… its websites, in accordance with Articles 13 and 14 of the GDPR, by the publication of a document entitled ‘General Data Protection Regulation (GDPR)’. The LSA noted controller’s commitment in pursuing a … appropriately and demonstrated compliance with the GDPR, the LSA together with the CSAs agreed to proceed to …
21 August 2019
… consent was not legally valid and Articles 5(1)(a), 6 and 7 GDPR were violated. Furthermore, the LI SA found that the controller did not comply with Article 15 GDPR as it did not appropriately provide the data subject … the storage period. 2 In addition, violations of Article 32 GDPR were also identified: first, the technical and …
29 August 2019
… of Article 56.1 of the General Data Protection Regulation (GDPR). The complaint, submitted by , was dealing with the … to use all of the powers conferred to it under the GDPR and the law of January 6th, 1978 as run ended. …
3 February 2022
… of processing (Article 6). Decision: Infringement of the GDPR, order to comply. Key words: … operations into compliance with the provisions of the GDPR within six months of this decision. For further … of processing (Article 6). Decision: Infringement of the GDPR, order to comply. Key words: …
1 July 2021
… established by the General Data Protection Regulation (GDPR). Furthermore, the enterprise had failed to fulfil its duty to provide information (Article 13 of the GDPR), its duty to delete the contents of the complainant’s … established by the General Data Protection Regulation (GDPR). Furthermore, the enterprise had failed to fulfil its …
21 April 2022
… data pertaining to a special category of data under the GDPR (health data). The temperature checks were mainly based … of Mobility, which does not meet the criteria of the GDPR, i.e. to be a clear and precise legal standard whose … data pertaining to a special category of data under the GDPR (health data). The temperature checks were mainly based …
18 May 2020
… in the meaning of the General Data Protection Regulation (GDPR). They confirmed that the head office in Norway makes … the doctor’s opinion as covered by the right of access in GDPR art. 15 and about their routines for handling of access …
19 April 2023
… to comply with the requirements of Chapter V of the GDPR, and if necessary, to stop the transfer at stake. The … to comply with the requirements of Chapter V of the GDPR, and if necessary, to stop the transfer at stake. The …
16 May 2022
… - article 35(2) icw 38(1) Decision: infringement of the GDPR, administrative fines Key words: illegally processing … violations of the General Data Protection Regulation (GDPR). For example, the Tax Administration had no statutory … - article 35(2) icw 38(1) Decision: infringement of the GDPR, administrative fines Key words: illegally processing …
2 September 2024
… the defendant has breached the articles 12.2, 12.3 et 15 GDPR because of the 14 month late reply and because the … sanction is based only on the infringement of article 15 GDPR, since both articles 12.2 et 12.3 were not in the … the defendant has breached the articles 12.2, 12.3 et 15 GDPR because of the 14 month late reply and because the …
7 May 2025
… fine of 60 000 € for infringement of Article 38(3) of the GDPR and a fine of 72 000 € for infringement of Articles 30(1), 35(1,7) of the GDPR. Total amount of imposed fine on Toyota Bank Polska … fine of 60 000 € for infringement of Article 38(3) of the GDPR and a fine of 72 000 € for infringement of Articles …