Search results
From GDPRhub
- AEPD (Spain) - EXP202103039 (category Article 13 GDPR)Article 13 GDPR. In the present case, the controller omitted this obligation. The DPA therefore held that the controller violated Article 13 GDPR by neither22 KB (3,385 words) - 13:35, 13 December 2023
- AEPD (Spain) - EXP202206542 (category Article 5(1) GDPR)information.” Recitals 39 and 60 of the GDPR help to specify the scope of the right of information that is given to the interested parties. Recital 39 establishes:24 KB (3,749 words) - 13:19, 13 December 2023
- AP (The Netherlands) - 24.03.2020 (category Article 4(15) GDPR)investigation into CP&A's compliance with Article 9, as well as Article 32 GDPR. Since Article 9 GDPR prohibits the processing of special categories of data, including48 KB (7,461 words) - 17:04, 12 December 2023
- Datatilsynet (Denmark) - 2023-432-0016 (category Article 4(11) GDPR)9(2)(a) GDPR and Article 6(1)(a) GDPR. Thus, the Danish DPA held that the processing was also not following the principles of Article 5(1) GDPR. Against46 KB (7,192 words) - 12:37, 19 December 2023
- AEPD (Spain) - PS/00152/2020 (category Article 33 GDPR)was responsible for violating Article 33 GDPR, and issued it with a warning pursuant to Article 58(2)(b) GDPR. The AEPD did not find the former Secretary27 KB (4,243 words) - 14:06, 13 December 2023
- AEPD (Spain) - PS/00128/2020 (category Article 4(13) GDPR)hours of employees without having informed them in accordance with Article 13 GDPR. The AEPD received a letter filed by the interested party against the respondent39 KB (5,912 words) - 14:02, 13 December 2023
- AEPD (Spain) - PS/00408/2019 (category Article 58(2) GDPR)the infringement of its collaboration duties as per Article 58(2) of the GDPR. The decision is the consequence of a complaint submitted by a Spanish citizen12 KB (1,812 words) - 14:35, 13 December 2023
- AEPD (Spain) - EXP202309109 (category Article 5(1)(c) GDPR)means of such activity, by virtue of article 4.7 of the GDPR. For its part, article 5.1.c) of the GDPR regulates the “principles relating to processing” establishing18 KB (2,733 words) - 13:18, 13 December 2023
- CNPD (Luxembourg) - Délibération n° 41FR/2021 (category Article 37(7) GDPR)Officer (DPO) under Section 4 of Chapter 4 of the GDPR (see in particular Article 37 GDPR to Article 39 GDPR). One of these audit proceedings concerned a Luxembourg56 KB (8,326 words) - 16:57, 6 December 2023
- AEPD (Spain) - 0098/2022 (category Article 6(1)(e) GDPR)36 GDPR) regarding the compliance of the envisaged processing with the GDPR. According to the Commission, the legal basis was Article 6(1)(e) GDPR, as56 KB (8,102 words) - 13:57, 1 February 2023
- Court of Appeal of Brussels - 2020/AR/329 (category Article 57(1)(f) GDPR)77 GDPR equals the right to claim a full substantive investigation and a full substantive assessment by the supervisory authority? Article 57 GDPR provides48 KB (7,560 words) - 09:03, 20 August 2021
- DSB (Austria) - 2020-0.550.322 (category Article 4(2) GDPR)provisions of the GDPR that are directly applicable do not supersede the provisions of the VStG and to the extent that Art. 83 (8) GDPR and recital 148 are ordered26 KB (4,098 words) - 13:51, 12 May 2023
- AEPD (Spain) - EXP202104917 (category Article 4(11) GDPR)consent under Article 4(11) GDPR and Article 6(1) LOPDGDD (National data protection law aimed at the implementation of the GDPR). In both articles, consent27 KB (4,356 words) - 12:41, 13 December 2023
- AEPD (Spain) - EXP202205932 (category Article 6(1) GDPR)under Article 6(1) GDPR. In light of this, the DPA issued a fine of €70,000 to másLUZ Energía (SIE) by virtue of Article 83(5) GDPR for unlawful processing32 KB (4,952 words) - 13:11, 13 December 2023
- CNIL (France) - SAN-2020-018 (category Article 12 GDPR) (section Violations of the obligations to inform as prescribed by Article 12 and 13 GDPR:)violation of Articles 12 and 13 GDPR? Did Nestor fail to respect the exercises of the right of access in violation of Article 15 GDPR? Did Nestor fail to satisfy69 KB (11,007 words) - 17:10, 6 December 2023
- NAIH (Hungary) - NAIH-373-31/2023 (category Article 5(1)(b) GDPR)95/46/EC (hereinafter: general data protection regulation or GDPR), and Article 6 (1) of the GDPR. 2. The Authority finds that Customer 1 violated the principle140 KB (23,189 words) - 08:25, 20 February 2024
- APD/GBA (Belgium) - 20/2023 (category Article 2(4) GDPR)for data processing under Article 21 GDPR and the principle of liability under Article 2(4) GDPR and Article 24 GDPR. The complainant, the data subject,14 KB (1,883 words) - 16:59, 20 March 2023
- Commissioner (Cyprus) - 17.05.23 (category Article 5(1)(c) GDPR)violation of Article 5(1)(c) GDPR, and the controller had no legal basis for the processing as required by Article 6 GDPR. As a result of the violations31 KB (4,973 words) - 16:50, 6 December 2023
- Garante per la protezione dei dati personali (Italy) - 9445550 (category Article 15 GDPR)the fine under Article 83(2) GDPR. The data subjects complains about the violation of its right of access (Article 15 GDPR) by the Istituto Nazionale per22 KB (3,478 words) - 15:51, 6 December 2023
- Court of Appeal of Brussels - 2020/AR/813 (category Article 5(1)(c) GDPR)6.1.f) GDPR) and in this balancing the considerations of the GDPR related to Art. 6.1.f) GDPR eligible [...] be taken, in particular Recital 47. Thus85 KB (12,340 words) - 15:30, 19 August 2022