16 October 2018
… operations which are subject to the requirement for a Data Protection Impact Assessment under Article 35(4) of the General Data Protection Regulation (EU) 2016/679 (GDPR) Decision … fields of application Examples 1 Processing of biometric data for the unique identification of natural per- sons if …
15 October 2018
… operations which are subject to the requirement for a Data Protection Impact Assessment under Article 35(4) of the General Data Protection Regulation (EU) 2016/679 (GDPR) Decision … 15.10.2018 1 (3) Office of the Data Protection Ombudsman P.O. Box 800, FIN-00521 Helsinki, …
16 March 2019
… operations which are subject to the requirement for a Data Protection Impact Assessment under Article 35(4) of the General Data Protection Regulation (EU) 2016/679 (GDPR) Decision … Norwegian Data Protection Authority UNOFFICIAL TRANSLATION Postal Address: … operations which are subject to the requirement for a Data Protection Impact Assessment under Article 35(4) of the …
27 January 2020
… and modalities for the exercise of the rights of the data subject) Article 17 (Right to erasure (‘right to be … that took place between the CNIL's services and the Data Protection Officer of in the framework of the examination of … The complainant requested to have his account and personal data deleted and objected to the reception of direct …
15 November 2018
… operations which are subject to the requirement for a Data Protection Impact Assessment under Article 35(4) of the General Data Protection Regulation (EU) 2016/679 (GDPR) Decision … List of Types of Data Processing Operations which require a Data Protection Impact Assessment. Introduction Article 35 of the …
18 June 2020
… Article 5 (Principles relating to processing of personal data) Article 32 (Security of processing) Article 33 (Notification of a personal data breach to the supervisory authority) Article 34 (Communication of a personal data breach to the data subject) Keywords Data subject …
20 February 2020
… and modalities for the exercise of the rights of the data subject) Article 21 (Right to object) Keywords … that took place between the CNIL's services and the Data Protection Officer (hereinafter "DPO") of in the framework … and modalities for the exercise of the rights of the data subject (Article 12) Right to object (Article 21) …
7 May 2020
… the complainant had requested the deletion of his personal data. The deletion of data was confirmed to him by e-mail. This e-mail was not … on is not available at Care.com Europe GmbH. Thus, no data protection violation could be determined. Furthermore, it … the complainant requested deletion of his personal data. The complainant received confirmation that his data …
6 July 2020
… to be forgotten’)) Article 21 (Right to object) Keywords Data subject rights Outcome Dismissal/Rejection of the case … 72790 DD 103674 Final Decision The Berlin Commissioner for Data Protection and Freedom of Information (Berlin DPA) decides … of the case Key words: Exercise of the rights of the data subjects, Spam Summary of the Decision Origin of the …
8 February 2019
… operations which are subject to the requirement for a Data Protection Impact Assessment under Article 35(4) of the General Data Protection Regulation (EU) 2016/679 (GDPR) Decision … 1 List of processing operations subject to data protection impact assessment Office for Personal Data …
17 December 2019
… Main legal reference Article 33 (Notification of a personal data breach to the supervisory authority) Article 34 (Communication of a personal data breach to the data subject) Keywords Hacker attack Personal data breach … users’ sessions to be taken over and part of their profile data being accessed (e.g. posts and comments on fo- rum and …
10 October 2019
… SK Main legal reference Article 15 (Right of access by the data subject) Article 17 (Right to erasure (‘right to be … Article 21 (Right to object) Keywords Advertising Data subject rights Right to erasure Right to object Outcome … REPUBLIC OF CYPRUS OFFICE OF THE COMMISSIONER FOR PERSONAL DATA PROTECTION Our ref. 11.17.001.006.052 10 October 2019 …
10 October 2019
… SK Main legal reference Article 15 (Right of access by the data subject) Article 21 (Right to object) Keywords Advertising Data subject rights Right of access Right to object Outcome … REPUBLIC OF CYPRUS OFFICE OF THE COMMISSIONER FOR PERSONAL DATA PROTECTION Our ref. 11.17.001.007.188 10 October 2019 …
5 August 2020
… Main legal reference Article 33 (Notification of a personal data breach to the supervisory authority) Article 34 (Communication of a personal data breach to the data subject) Keywords Hacker attack Personal data breach … DD 126889 FD 142710 Final Decision 1. Facts concerning the data breach - Controller: AWIN AG - Incident: Credential …
13 June 2019
… 17 (Right to erasure (‘right to be forgotten’)) Keywords Data subject rights Right to erasure Outcome No violation … Request The Office of the Commissioner for Personal Data Protection (hereafter “CY SA”) refers to the complaint of … Right to erasure, e-commerce, Exercise of the rights of data subjectsSummary of the DecisionOrigin of the case The …
6 July 2021
… with robocalls without consent 6 July 2021 Finland The Data Protection Ombudsman’s sanctions board has imposed an administrative fine on a magazine publisher due to data protection violations related to direct marketing. The … The Data Protection Ombudsman’s sanctions board has imposed an …
19 February 2020
… and modalities for the exercise of the rights of the data subject) Article 17 (Right to erasure (‘right to be … to your company regarding a violation of the General Data Protection Regulation (GDPR) when processing personal data … to have his player account deleted from the controller database of the online game he had previously bought. The …
29 June 2020
… to erasure (‘right to be forgotten’)) Keywords Consumer protection Outcome Reprimand Summary 62.2KB Download … Hatóság (Hungarian National Authority for Data Protection and Freedom of Information, hereinafter: the … complainant. As a result of an administrative error, the data controller failed to inform the complainant about the …
2 February 2022
… Article 5 (Principles relating to processing of personal data) Article 6 (Lawfulness of processing) Article 7 … Article 32 (Security of processing) Article 35 (Data protection impact assessment) Article 37 (Designation of the data protection officer) Keywords Advertising E-Commerce Lawfulness of …
13 January 2021
… 13 January 2021 Poland The President of the Personal Data Protection Office (UODO) imposed a fine of PLN 1.9 million … measures to ensure the security of the processed data. UODO stated that the company infringed the principles … The President of the Personal Data Protection Office (UODO) imposed a fine of PLN 1.9 …