22 June 2019
… Main legal reference Article 33 (Notification of a personal data breach to the supervisory authority) Article 34 … and I am of the view that has complied with its data protection obligations. You have explained that following … whilst we dealt with the matter. Yours sincerely Lead Case officer Information Commissioner’s Office ICO Statement You …
3 August 2019
… Article 5 (Principles relating to processing of personal data) Keywords Accuracy E-Commerce Outcome No sanction … correspondence of 20 March 2019 with regard to the data protection complaint that has been raised with the ICO about … please do not hesitate to contact me. Yours sincerely, Case Officer Information Commissioner’s Office Direct dial …
17 December 2019
… about your handling of his request to have his personal data erased. The ICO’s role Part of our role is to consider complaints from individuals who believe their data protection rights have been infringed. We want to improve … your information rights obligations. Yours sincerely Case Officer Information Commissioner’s Office Direct dial …
5 October 2022
… The CSC aims to enhance cooperation among the different data protection supervisory authorities and ensure a more … to Article 62 of Regulation 2018/1725 or to the European Data Protection Board, and by implication, to the CSC. Over …
20 July 2020
… be carried out 20 July 2020 The President of the Personal Data Protection Office (UODO), after having conducted an … protection, and whether GGK has appointed a Data Protection Officer. Unfortunately, due to the lack of access by the …
11 January 2021
… Polish DPA Fines ENEA S.A.: A data breach must be notified to the supervisory authority 11 … 000) on ENEA S.A. company for failing to notify a personal data breach. The Personal Data Protection Office (UODO) received information about the …
10 December 2020
… Committee was created within the framework of the European Data Protection Board (EDPB) and brings together the EU supervisory authorities (SAs) and the European Data Protection Supervisor (EDPS), as well as the …
2 September 2020
… of a Reprimand for the Processing of Students’ Personal Data 2 September 2020 Poland The President of the Personal Data Protection Office (UODO) imposed a penalty of a reprimand …
18 December 2019
… 18 December 2019 Germany The Federal Commissioner for Data Protection and Freedom of Information (BfDI) imposed a fine … 37 of the GDPR to appoint an internal data protection officer. When imposing the 10.000 Euro fine, the fact was …
16 December 2019
… 5 paragraph (1) letter d) and paragraph (2) of General Data Protection Regulation; the infringement of provisions of Articles 6 and 7 of General Data Protection Regulation; the infringement of provisions …
11 February 2021
… fine to Gveik AS 11 February 2021 Norway The Norwegian Data Protection Authority has fined Gveik AS EUR 7 500 (NOK … rating on them. The individual filed a complaint with the Data Protection Authority. Credit rating for personal …
20 September 2019
… 20 September 2019 Poland The President of the Personal Data Protection Office imposed a fine of an amount higher than … and technical measures for the protection of personal data were not appropriate to the risk posed by the …
1 July 2021
… to amend agreements 1 July 2021 Norway The Norwegian Data Protection Authority’s inspection of Oslo University … hospital cannot document satisfactory control of patient data when the hospital needs laboratory services from other …
18 June 2020
… Article 5 (Principles relating to processing of personal data) Article 32 (Security of processing) Article 33 … about the processing of personal data The Danish Data Protection Agency hereby reacts to the case where (hereinaf- … the name and contact details of the data protection officer or other con- tact point where more information can …
11 February 2021
… fine to Coop Finnmark 11 February 2021 Norway The Norwegian Data Protection Authority has issued a fine in the amount of EUR … in this case. Lacked legal basis All processing of personal data requires a legal basis in order to be lawful. After …
11 February 2021
… for forwarding e-mail 11 February 2021 Norway The Norwegian Data Protection Authority has fined an organization EUR 40 000 … for more than a month. After investigating the matter, the Data Protection Authority concludes that the forwarding was …
11 June 2019
… to fine furniture company 11 June 2019 Denmark The Danish Data Protection Agency has reported IDDesign A/S and proposed a fine of DKK 1,5 million for failure to delete data about 385.000 customers. In the autumn of 2018, the …
20 April 2023
… Article 5 (Principles relating to processing of personal data), Article 24 (Responsibility of the controller), Article 25 (Data protection by design and by default), Article 32 (Security … of more than 5 300 EUR (23 580 PLN) on the Disciplinary Officer of the Bar Association for breaching the provisions …
3 December 2019
… of processing) Article 15 (Right of access by the data subject) Article 17 (Right to erasure (‘right to be … December 3, 2019 No. 2-2.2/52 Re: imposing an obligation Data State Inspectorate of the Republic of Latvia … mechanism set out in Article 63 of the General Data Protection Regulation1 (hereinafter - the GDPR). The …
21 February 2022
… Swedish Authority for Privacy Protection (IMY) fines Region Uppsala for breaches in its … for Privacy Protection (IMY) has received two personal data breach notifications from Region Uppsala. The data breaches concern sensitive personal data sent without …