Skip to main content
European Data Protection Board
es
Bulgarian (bg)
Finnish (fi)
French (fr)
Irish (ga)
Croatian (hr)
Hungarian (hu)
Italian (it)
Czech (cs)
Lithuanian (lt)
Danish (da)
Latvian (lv)
German (de)
Maltese (mt)
Dutch (nl)
Estonian (et)
Greek (el)
Polish (pl)
English (en)
Portuguese (pt-pt)
Romanian (ro)
Slovak (sk)
Slovenian (sl)
Swedish (sv)
Main navigation
INICIO
Acerca del CEPD
Acerca del CEPD
Quiénes somos
Miembros
Secretaría del CEPD
Strategy & Work Programme
Reglamento interno y Memorando de entendimiento
Internal procedural guidance
Informe anual
Marco jurídico
Press Kit
Avisos legales
Aviso sobre protección de datos
Cookies
Acceso a los documentos por parte del público
Derechos de autor
More about the EDPB
Contact us
Empleo
Grupo de Trabajo del artículo 29
Legal studies by external providers
Nuestro trabajo y herramientas
General Guidance
Directrices, recomendaciones y buenas prácticas
Consulta pública
Otros documentos
Support Cooperation and Enforcement
GDPR Cooperation and Enforcement
Consistency and Cooperation procedures
International Cooperation & Cooperation with Other Authorities
Registers
Final One Stop Shop Decisions
Approved Binding Corporate Rules
Codes of Conduct, amendments and extensions
Decisions taken by supervisory authorities and courts on issues handled in the consistency mechanism
Documents addressed to the European Commission or National Authorities
Dictámenes
Decisiones vinculantes
GDPR or LED evaluations
Other documents addressed to EU legislator or Member States
EDPB Plenary meetings
Agenda
Plenary Minutes
Other documents
Circulares
Nuestros documentos
News
CSC
About CSC
Quiénes somos
Miembros
CSC Secretariat
CSC Meetings
Work Programme
Marco jurídico
Our Work & Tools
IMI Reports
Search
Search on the EDPB web site:
Home
Nuestro trabajo y herramientas
Final One Stop Shop Decisions
Final One Stop Shop Decisions
EDPBI:FR:OSS:D:2021:310
30 December 2021
LSA
FR
CSA
BE
DE
LU
IT
NL
ES
Main legal reference
Article 5 (Principles relating to processing of personal data)
Article 13 (Information to be provided where personal data are collected from the data subject)
Article 17 (Right to erasure (‘right to be forgotten’))
Article 28 (Processor)
Article 32 (Security of processing)
Keywords
Data subject rights
Right to be informed
Right to erasure
Data retention
Personal data breach
Data security
Password
Outcome
Administrative fine
Summary
Descarga
EDPBI:EE:OSS:D:2021:289
4 November 2021
LSA
EE
CSA
DE
BE
NL
CZ
AT
BG
FR
RO
LV
PL
SE
IE
UK
Main legal reference
Article 5 (Principles relating to processing of personal data)
Article 32 (Security of processing)
Keywords
Personal data breach
Data security
Fraud
Third party access to personal data
Outcome
Reprimand
Descarga
EDPBI:IS:OSS:D:2021:216
29 April 2021
LSA
IS
CSA
SE
Main legal reference
Article 32 (Security of processing)
Article 5 (Principles relating to processing of personal data)
Keywords
Personal data breach
Data security
Children
Education
Outcome
Administrative fine
Descarga
EDPBI:UK:OSS:D:2020:100
15 April 2020
LSA
UK
CSA
ALL DE
BE
EE
EL
FI
FR
HU
IE
IT
NL
PL
SI
SK
Main legal reference
Article 5 (Principles relating to processing of personal data)
Article 7 (Conditions for consent)
Article 32 (Security of processing)
Article 33 (Notification of a personal data breach to the supervisory authority)
Keywords
Personal data breach
Outcome
No sanction
Summary
EDPBI:LT:OSS:D:2019:17
16 May 2019
LSA
LT
CSA
LV
Main legal reference
Article 14 (Information to be provided where personal data have not been obtained from the data subject)
Article 24 (Responsibility of the controller)
Article 32 (Security of processing)
Article 33 (Notification of a personal data breach to the supervisory authority)
Article 5 (Principles relating to processing of personal data)
Article 6 (Lawfulness of processing)
Article 83 (General conditions for imposing administrative fines)
Keywords
Personal data breach
Outcome
Administrative fine
Summary