Search results
From GDPRhub
- NAIH (Hungary) - NAIH-2020-2546-5 (category Article 5(1)(c) GDPR)out in Article 6 (1) of the GDPR In addition, there is a circumstance within the meaning of Article 9 (2) of the GDPR. (45) Article 9 (2) of the GDPR does72 KB (11,159 words) - 10:09, 17 November 2023
- IP - 07121-1/2020/195 (category Article 35 GDPR)protection impact assessment prior to the use of the drones, as provided in Article 35 GDPR. In addition, the IP clarified that the Civil Aviation Agency of the9 KB (839 words) - 14:07, 24 February 2022
- NSA - III OSK 1789/22 (category Article 5(1)(c) GDPR)18a section 1 and art. 35 section 3 point 5 of the Act on and art. 7 of the Constitution of the Republic of Poland; 7) art. 35 section 1 and 3 in connection74 KB (12,347 words) - 13:46, 9 October 2023
- APD/GBA (Belgium) - 15/2023 (category Article 7(1) GDPR)of Article 6(1)(e) are met. II.2. Article 5 of the GDPR, Article 24(1) of the GDPR and Article 25(1) and (2) of the AVG II.2.1. Article 5 (2) GDPR, Article105 KB (15,883 words) - 15:05, 8 March 2023
- Garante per la protezione dei dati personali (Italy) - 9356568 (category Article 36 GDPR)processing. In accordance with Article 36 GDPR, the Garante must decide on the adequacy of the intended processing under the GDPR. After careful examination71 KB (11,426 words) - 15:49, 6 December 2023
- AEPD (Spain) - PS/00001/2021 (category Article 5(1)(f) GDPR)enshrined in Article 25 GDPR. Additionally, the AEPD concluded that the controller had violated Article 5(1)(f) GDPR, noting that although the GDPR does not270 KB (43,335 words) - 12:39, 13 December 2023
- Datainspektionen - DI-2019-7782 (category Article 35 GDPR)DI-2019-7782 4 (22) infringements of Article 5 (1) (a), Article 6 (1), Article 9 (2), Article 13, Article 35 and Article 36 of the Data Protection Ordinance52 KB (8,101 words) - 11:43, 7 April 2022
- HDPA (Greece) - 41/2022 (category Article 35(1) GDPR)thereby violating Article 13(2) GDPR. The investigated controllers did not comply with the storage limitation principle under Article 5(1) GDPR because the data14 KB (2,046 words) - 19:00, 21 September 2022
- CJEU - T‑200/21 JS v European Data Protection Supervisor (EDPS) (category Article 17 GDPR)right to erasure (“right to be forgotten”) of Article 17 GDPR and Article 19 of Regulation 2018/1725. Under GDPR, such prolonged and unrestricted data retention61 KB (9,971 words) - 14:28, 4 January 2024
- Garante per la protezione dei dati personali (Italy) - 9451734 (category Article 5(1)(c) GDPR)to be heard by the Authority, within 30 days (Article 166, paragraphs 6 and 7, of the Code, and Article 18, paragraph 1, by Law No. 689 of 24/11/1981)24 KB (3,697 words) - 15:52, 6 December 2023
- CNIL (France) - SAN-2023-018 (category Article 31 GDPR)DPO and to cooperate with the DPA, therefore violating Article 31 GDPR and Article 37(1)(a) GDPR. On 2 June 2021, the French DPA (“CNIL”) informed a French22 KB (3,384 words) - 13:25, 24 January 2024
- CNIL (France) - SAN-2023-016 (category Article 5(1)(b) GDPR)breached Article 5(1)(b) GDPR. Therefore, the DPA handed down a 'call to order' against the joint controllers for breaching Article 5(1)(b) GDPR, and no27 KB (4,166 words) - 17:06, 6 December 2023
- ICO (UK) - Chief Constable West Midlands Police (category Article 34(3) GDPR)at least four dates where there are suggestions this may have occurred. 1.7 WMP are unable to demonstrate that inaccurate personal data was rectified without18 KB (2,476 words) - 09:10, 14 May 2024
- DSB (Austria) - D550.038/0003-DSB/2018 (category Article 5(1)(a) GDPR)violates § Article 13 (3) in conjunction with Article 62 (1) 4 DSG and for the period prior to 25 May 2018 against Article 52 Paragraph 2 no. 7 in conjunction31 KB (5,161 words) - 14:02, 12 May 2023
- CJEU - C-280/22 - Kinderrechtencoalitie Vlaanderen and Liga voor Mensenrechten v Belgian State (category Article 35 GDPR)valid and compatible with Article 16 TFEU and – as regards Article 3(5) and (6) – with Article 21 TFEU, as well as with Articles 7, 8 and 52 of the Charter7 KB (740 words) - 11:43, 7 September 2022
- Datainspektionen - DI-2019-7024 (category Article 35 GDPR)risk of Page 7 The Data Inspectorate DI-2019-7024 7 (31) rights and freedoms of natural persons. This includes in accordance with Article 35 (3) b that an70 KB (11,103 words) - 11:43, 7 April 2022
- KamR Stockholm - Case No. 5888-20 (category Article 35 GDPR)data has infringed Article 5, Article 9, Article 35 and Article 36 of the Data Protection Regulation. These articles are covered by article 83.4 and 83.5 and62 KB (7,607 words) - 08:56, 7 October 2021
- IMY (Sweden) - IMY-2023-1647 (category Article 35(1) GDPR)Childrens and Education Board 300,000 SEK (around €26,524) for breaching Article 35(1) GDPR. The Board failed to conduct a data protection impact assesment prior5 KB (641 words) - 16:51, 5 December 2023
- Persónuvernd (Iceland) - 202112772 (category Article 35(1) GDPR)violation of Article 24(1) and (2) GDPR (responsibility of the controller), Article 25 GDPR (privacy by design and by default) or of Article 32 GDPR (obligation46 KB (7,050 words) - 09:55, 16 December 2021
- Garante per la protezione dei dati personali (Italy) - 9845156 (category Article 35 GDPR)violation of Article 35 GDPR. In light of the above violations, the DPA imposed an administrative fine of €55,000 (Article 58(2)(i) GDPR). In doing so128 KB (20,856 words) - 12:32, 14 March 2023