10 March 2025
… from accessing the data in the loan applications (art. 32 GDPR, art. 25 GDPR and art. 5(1)(f)). Due to poor data security, the … from accessing the data in the loan applications (art. 32 GDPR, art. 25 GDPR and art. 5(1)(f)). Due to poor data …
… Processing of Personal Data pursuant to Art. 42 GDPR (‘GDPR – information privacy standard’), Version 0.9.7 Opinion … IT-supported processing of Personal Data pursuant to art 42 GDPR (‘GDPR – information privacy standard’)” presented 2 …
31 October 2019
… with Article 32 paragraph (1) and paragraph (2) of the GDPR , which led to imposing an administrative fine in the … with Article 32 paragraph (1) and paragraph (2) of the GDPR , as well as of Article 33 paragraph (1) of the GDPR, which led to imposing an administrative fine in the …
10 March 2021
… national authorities responsible for enforcement of the GDPR should be entrusted with the oversight of the privacy … the current ePrivacy Directive, and should complement the GDPR by providing additional strong guarantees for … national authorities responsible for enforcement of the GDPR should be entrusted with the oversight of the privacy …
7 October 2019
… Summary Final Decision Art 60 Complaint Infringement of the GDPR EDPBI:EE:OSS:D:2019:55 Background information Date of … Right to erasure (Article 17) Decision: Infringement of the GDPR, issue of reprimand in accordance with Article 58(2)(b) GDPR Key words: Right to object, Right to erasure, …
3 July 2020
… due to the complainant’s letter not mentioning the words ‘GDPR’, ‘CNIL’, ‘data protection’ or ‘personal data’. The … request, despite the time limits set out under Article 12 GDPR.Decision The LSA will issue reprimands to the controller in accordance with Article 58(2)(b) GDPR. Further, in accordance with Articles 12 and 24 GDPR, …
3 February 2022
… of processing (Article 6). Decision: Infringement of the GDPR, order to comply. Key words: … operations into compliance with the provisions of the GDPR within six months of this decision. For further … of processing (Article 6). Decision: Infringement of the GDPR, order to comply. Key words: …
1 July 2021
… established by the General Data Protection Regulation (GDPR). Furthermore, the enterprise had failed to fulfil its duty to provide information (Article 13 of the GDPR), its duty to delete the contents of the complainant’s … established by the General Data Protection Regulation (GDPR). Furthermore, the enterprise had failed to fulfil its …
21 April 2022
… data pertaining to a special category of data under the GDPR (health data). The temperature checks were mainly based … of Mobility, which does not meet the criteria of the GDPR, i.e. to be a clear and precise legal standard whose … data pertaining to a special category of data under the GDPR (health data). The temperature checks were mainly based …
2 July 2019
… access to his personal data in accordance with Article 15 GDPR. The controller attempted to provide the complainant … months after the deadline established under Article 12 (3) GDPR.Findings The LSA determined that the controller infringed Article 12(3) GDPR by exceeding the deadline to answer the complainant’s …
16 May 2022
… - article 35(2) icw 38(1) Decision: infringement of the GDPR, administrative fines Key words: illegally processing … violations of the General Data Protection Regulation (GDPR). For example, the Tax Administration had no statutory … - article 35(2) icw 38(1) Decision: infringement of the GDPR, administrative fines Key words: illegally processing …
2 September 2024
… the defendant has breached the articles 12.2, 12.3 et 15 GDPR because of the 14 month late reply and because the … sanction is based only on the infringement of article 15 GDPR, since both articles 12.2 et 12.3 were not in the … the defendant has breached the articles 12.2, 12.3 et 15 GDPR because of the 14 month late reply and because the …
7 May 2025
… fine of 60 000 € for infringement of Article 38(3) of the GDPR and a fine of 72 000 € for infringement of Articles 30(1), 35(1,7) of the GDPR. Total amount of imposed fine on Toyota Bank Polska … fine of 60 000 € for infringement of Article 38(3) of the GDPR and a fine of 72 000 € for infringement of Articles …
19 April 2023
… to comply with the requirements of Chapter V of the GDPR, and if necessary, to stop the transfer at stake. The … to comply with the requirements of Chapter V of the GDPR, and if necessary, to stop the transfer at stake. The …
29 August 2019
… of Article 56.1 of the General Data Protection Regulation (GDPR). The complaint, submitted by , was dealing with the … to use all of the powers conferred to it under the GDPR and the law of January 6th, 1978 as run ended. …
20 March 2019
… its websites, in accordance with Articles 13 and 14 of the GDPR, by the publication of a document entitled ‘General Data Protection Regulation (GDPR)’. The LSA noted controller’s commitment in pursuing a … appropriately and demonstrated compliance with the GDPR, the LSA together with the CSAs agreed to proceed to …
21 December 2018
… register.Findings According to recital 47 and Art 6.1.f GDPR legitimate interest of the controller or of a third … were filed before the 25 May 2018. Articles 13 and 14 GDPR were thus not yet applicable. However, under the GDPR the data subjects are to be informed from which source …
21 August 2019
… consent was not legally valid and Articles 5(1)(a), 6 and 7 GDPR were violated. Furthermore, the LI SA found that the controller did not comply with Article 15 GDPR as it did not appropriately provide the data subject … the storage period. 2 In addition, violations of Article 32 GDPR were also identified: first, the technical and …
20 January 2023
… Legal Reference: Lawfulness of processing (Article 6(1) GDPR) Decision: Precept, Order to … without consent in accordance with Article 6(1)(a) of the GDPR. Estonian SA issued a precept with a penalty payment of … Legal Reference: Lawfulness of processing (Article 6(1) GDPR) Decision: Precept, Order to …
20 April 2023
… of the Bar Association for breaching the provisions of the GDPR by failing to implement appropriate technical and … should be made compliant with the provisions of the GDPR within six months from the date of delivery of the … of the Bar Association for breaching the provisions of the GDPR by failing to implement appropriate technical and …