Search results | European Data Protection Board

EDPBI:LV:OSS:D:2019:79
8 November 2019
… and modalities for the exercise of the rights of the data subject) Article 13 (Information to be provided where … infringement case”, Article 58(2)(i) of the General Data Protection Regulation1 (hereinafter—the GDPR), Section … contact details of the controller or the data protection officer, the purpose of the use of the personal data, the …
Whistle-blowing without privacy: the Italian SA fines hospital and IT service provider
10 June 2022
News
… confidentiality); Art. 13 and 14 (Information); Art. 25 (Data protection by design and by default); Art. 28 (Processor); … given in this respect by the Hospital’s Data Protection Officer (DPO). The whistle-blowing service provider had not …
Italian DPA: Major Critical Issues for Vaccination Pass
4 May 2021
News
… green pass and it is affected additionally by several data protection shortcomings including the lack of any assessment … Contrary to the requirements laid down in the EU General Data Protection Regulation, the decree does not specify the …
EDPBI:IE:OSS:D:2022:524
21 October 2022
… 17 (Right to erasure (‘right to be forgotten’)) Keywords Data protection officer Exercise of data subject rights Right to erasure …
EDPBI:FR:OSS:D:2020:134
28 July 2020
… Article 5 (Principles relating to processing of personal data) Article 12 (Transparent information, communication and … Nationale de l’Informatique et des Libertés (French Data Protection Authority), meeting under its Restricted … contact details, the contact details of the data protection officer, the purposes of the processing and its legal basis, …
Guidelines 01/2021 on Examples regarding Data Breach Notification
19 January 2021
Guidelines
… Guidelines 01/2021 on Examples regarding Data Breach Notification Start Date: 19 January 2021 End … Topics: Cybersecurity and data breach The European Data Protection Board welcomes comments on the Guidelines … their obligation to immediately report it to the security officer.  Emphasize the need of identifying the type of the …
The Belgian Supervisory Authority sanctions telecom operator for 14 months late reply to a right to access request
2 September 2024
News
… and modalities for the exercise of the rights of the data subject), Article 15 (Right to access by the data … specifically asked his demand to be transferred to the Data Protection Officer (DPO). However, despite the fact that his request …
Opinion 10/2019 on the draft list of the competent supervisory authority of Cyprus regarding the processing operations subject to the requirement of a data protection impact assessment (Article 35(4) GDPR)
12 July 2019
Opinion of the Board (Art. 64)
… the processing operations subject to the requirement of a data protection impact assessment (Article 35(4) GDPR) 12 July … the processing operations subject to the requirement of a data protection impact assessment (Article 35(4) GDPR) …
Guidelines 3/2019 on processing of personal data through video devices
12 July 2019
Guidelines
… Guidelines 3/2019 on processing of personal data through video devices Guidelines 3/2019 on processing … of personal data through video devices The European Data Protection Board welcomes comments on the Guidelines 3/2019 … which requires processors to designate a data protection officer, if the processing operation by its nature entails …
Opinion 7/2018 on the draft list of the competent supervisory authority of Greece regarding the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR)
3 October 2018
Opinion of the Board (Art. 64)
… the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR) 3 October … large-scale. In the WP29 guidelines on Data Protection Officer and on DPIA, both endorsed by Board, it has …
Opinion 01/2019 on the draft list of the competent supervisory authority of the Principality of Liechtenstein regarding the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR)
23 January 2019
Opinion of the Board (Art. 64)
… the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR) 23 January … the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR) …
Opinion 6/2018 on the draft list of the competent supervisory authority of Estonia regarding the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR)
3 October 2018
Opinion of the Board (Art. 64)
… the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR) 3 October … large-scale. In the WP29 guidelines on Data Protection Officer and on DPIA, both endorsed by Board, it has …
Support Pool of Experts (SPE) Programme
… developed as part of the EDPB 2021-2023 Strategy to help Data Protection authorities (DPAs) increase their capacity to … AI Auditing by Dr. Gemma GALDON CLAVELL Data Protection Officer training by Dr. Tihomir Katulić AI Risks: Optical …
Guidelines 1/2020 on processing personal data in the context of connected vehicles and mobility related applications
28 January 2020
Guidelines
… Guidelines 1/2020 on processing personal data in the context of connected vehicles and mobility … Topics: New Technology e-Privacy The European Data Protection Board welcomes comments on the Guidelines 1/2020 … terms: − the contact details of the data protection officer; − the purposes of the processing for which the …
Opinion 4/2018 on the draft list of the competent supervisory authority of Czech Republic regarding the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR)
3 October 2018
Opinion of the Board (Art. 64)
… the processing operations subject to the requirement of a data protection impact assessment (Article 35.4 GDPR) 3 October … large-scale. In the WP29 guidelines on Data Protection Officer (WP243) and on DPIA (WP248), both endorsed by Board, …
Hungarian SA’s procedure on the handling of unsubscribe from newsletter
12 December 2023
News
… Complainant lodged a complaint by e-mail with the Romanian data protection authority concerning an unsuccessful unsubscribe … As this involved the cross-border processing of personal data, an Internal Market System (IMI) procedure was launched …
Dutch DPA imposes fine of €525,000 on Locatefamily.com
12 May 2021
News
… on Locatefamily.com 12 May 2021 Netherlands The Dutch Data Protection Authority (DPA) has imposed a fine of €525,000 on … of a representative in the EU is a breach of the General Data Protection Regulation (GDPR) and is the reason the fine …
Opinion 13/2019 on the draft list of the competent supervisory authority of France regarding the processing operations exempt from the requirement of a data protection impact assessment (Article 35(5) GDPR)
12 July 2019
Opinion of the Board (Art. 64)
… the processing operations exempt from the requirement of a data protection impact assessment (Article 35(5) GDPR) 12 July … the processing operations exempt from the requirement of a data protection impact assessment (Article 35(5) GDPR) …
Italian DPA: Green light from the Italian SA subject to adequate safeguards
10 June 2021
News
… ensure the current validity of a green pass in line with data protection principles; furthermore, checks based on this app will only disclose the data subject’s name without displaying any other information …
EDPB-EDPS Joint Opinion 1/2021 on standard contractual clauses between controllers and processors
14 January 2021
EDPB/EDPS Joint Opinion
… ..................................................7 4.2.5 Data Subject rights (Clause 8 of the Draft … Adopted 3 The European Data Protection Board and the European Data Protection …