Search results
From GDPRhub
- AEPD (Spain) - PS/00274/2019 (category Article 5(1)(f) GDPR)thearticle 5.1.f), in relation to article 6.1 of the RGPD.The violation of article 5.1.f) of the RGPD is typified in article 83.5.a)of the RGPD. The LOPDGDD37 KB (5,700 words) - 14:24, 13 December 2023
- NAIH (Hungary) - NAIH-2020-2546-5 (category Article 5(1)(c) GDPR)data, recorded in copies Article 6 (1) of the GDPR and, in the case of health data, Article 9 of the GDPR. Article 1 (1); (3) did not provide clear and72 KB (11,159 words) - 10:09, 17 November 2023
- AEPD (Spain) - PS/00201/2019 (category Article 4(1) GDPR)data had taken place, meaning GDPR obligations did not apply. Are these magnetic cards personal data within Article 4(1) GDPR? If so, did the MCP infringe54 KB (9,019 words) - 14:10, 13 December 2023
- HDPA (Greece) - 55/2021 (category Article 33 GDPR)measures to security of processing, in accordance with Article 32 GDPR, in connection with Article 24 GDPR, as the controller did not take into account the risks65 KB (10,533 words) - 10:28, 27 January 2022
- AEPD (Spain) - PS/00075/2020 (category Article 6(1)(a) GDPR)sanction is imposed for violation of Article 6.1.a) of the GDPR of 3,000 euros. VIII Infringement of Article 13 of the GDPR The facts claimed also provide evidence31 KB (4,909 words) - 13:56, 13 December 2023
- CNPD (Luxembourg) - Délibération n° 6FR/2023 (category Article 31 GDPR)the GDPR is the provisions directly imposing obligations on processors. [...] In this regard, the [EDPS] considers that Article 28(3) of the GDPR, while55 KB (9,079 words) - 16:57, 6 December 2023
- CNIL (France) - SAN-2019-010 (category Article 5(1)(c) GDPR)investigations the CNIL found five breaches of the GDPR: - Violation of the right to object, Article 21(2) GDPR: no procedure was implemented to ensure effectively62 KB (10,001 words) - 17:09, 6 December 2023
- Tietosuojavaltuutetun toimisto (Finland) - 310/161/23 (category Article 83(6) GDPR)aggravating circumstance according to Article 83(2)(i) or as a separate violation according to Article 83(5)(e) or Article 83(6). Since the situation at hand71 KB (11,552 words) - 13:40, 12 January 2024
- Garante per la protezione dei dati personali (Italy) - 9861249 (category Article 28 GDPR)violated Articles 5(1)(a) and 13 GDPR, as it did not provide the data subject with a proper privacy policy. Article 28 GDPR was also infringed, as no controller-processor87 KB (14,104 words) - 15:45, 6 December 2023
- CE - N° 428451 (category Article 9(3) GDPR)the analysis of a health establishment's activities are collected. Article 9(3) GDPR provides that health data may be processed for the purposes of the35 KB (5,153 words) - 16:29, 20 May 2021
- CNPD (Luxembourg) - Délibération n° 24FR/2022 (category Article 12(1) GDPR)based on Article 6.1.f) of the GDPR, but not for all processing based on this article. […] 73 74Investigation report, page 22, point 4.4.2.3.3. WP 260 rev82 KB (11,472 words) - 16:58, 6 December 2023
- AEPD (Spain) - PS/00009/2020 (category Article 6(1) GDPR)February 2019 to February 28, 2019, the date on which thefinal discharge.C / Jorge Juan, 6www.aepd.es28001 - Madridsedeagpd.gob.es Page 3 3/11THIRD: On February27 KB (4,150 words) - 13:45, 13 December 2023
- APD/GBA (Belgium) - 08/2019 (category Article 12(3) GDPR)violated Articles 12(3), (4), 13(2)(b), 30(1)(d) and (g) of the GDPR and issued a warning by virtue of Article 58(2)(b) of the GDPR. Due to the anonimisation24 KB (3,843 words) - 16:51, 12 December 2023
- APD/GBA (Belgium) - 11/2019 (category Article 5(1)(b) GDPR)of the provisions as set out in Article 95 § 2 and Article 98 of the ICA. They are also informed, pursuant to Article 99 of the ICA, of the time limits24 KB (3,844 words) - 16:51, 12 December 2023
- APD/GBA (Belgium) - 149/2023 (category Article 7(3) GDPR)online booking platform, for failing to comply with Article 12(3) GDPR and because Article 6(1)(f) GDPR was not a valid legal basis to publish personal data113 KB (17,325 words) - 08:50, 19 March 2024
- NAIH (Hungary) - NAIH/2020/32/4 (category Article 5(1) GDPR)right of access under Article 15 of the GDPR and the right to erasure (‘forgotten’) under Article 17 of the GDPR, Article 12 of the GDPR on measures to exercise75 KB (12,586 words) - 10:10, 17 November 2023
- CNPD (Luxembourg) - Délibération n°37FR/2021 (category Article 37(7) GDPR)Officer (DPO) under Section 4 of Chapter 4 of the GDPR (see in particular Article 37 GDPR to Article 39 GDPR). One of these audit proceedings concerned a Luxembourg26 KB (3,862 words) - 17:41, 25 June 2022
- Persónuvernd (Iceland) - 2020061954 (category Article 28(3) GDPR)incomplete with regards to several requirements set in Article 28(3) GDPR, and notably points b, c, e, f, g and h. For example, the processing agreement did not88 KB (14,189 words) - 09:58, 7 December 2021
- UODO (Poland) - DKN.5112.13.2020 (category Article 57(1)(h) GDPR)in line with the principle of lawfulness in Article 5(1)(a) GDPR, as none of the conditions of Article 6 GDPR were satisfied. The data disclosed in the land60 KB (9,755 words) - 09:58, 17 November 2023
- Rb. Amsterdam - C/13/692003/HA RK 20-302 (category Article 15(1) GDPR)All this is in violation of Article 22 GDPR. The requirements of proportionality and subsidiarity have also not been met. 3.3. Furthermore, prior to the30 KB (4,797 words) - 10:03, 19 May 2021