Search results
From GDPRhub
- AEPD (Spain) - PS/00069/2020 (category Article 83(2)(k) GDPR)processing of personal data (83 (2) (k) GDPR); the fact that basic personal identifiers are affected (83 (2) (g) GDPR); the intentionality or negligence20 KB (3,066 words) - 13:55, 13 December 2023
- AEPD (Spain) - PS/00322/2020 (category Article 58(2)(b) GDPR)the GDPR, pursuant to Articles 58(2)(b) and (d) respectively. For the violation of Article 5(1)(f), it issued a fine of €10000, pursuant to Article 58(2)(i)26 KB (3,840 words) - 14:28, 13 December 2023
- DPC - Health Service Executive (IN-19-9-2) (category Article 5(1)(f) GDPR)further additional corrective powers exercised in this second decision (IN-19-9-2) in light of how the first decision addressed the circumstances of the same3 KB (240 words) - 09:18, 3 March 2021
- AZOP (Croatia) - Decision 13-09-2023 (category Article 13(2)(a) GDPR)the controller violated the provisions of Article 13(1)(c) GDPR, Article 13(2)(a) GDPR and Article 13(2)(e) GDPR, according to which a controller is obliged9 KB (1,276 words) - 15:22, 30 October 2023
- Garante per la protezione dei dati personali (Italy) - 9451734 (category Article 6(2) GDPR)paragraph 2 and paragraph 3, letter b) of the Regulation; 9, paragraphs 1, 2, 4, of the Regulation, Articles 2-ter, paragraphs 1 and 3 and 2-septies, paragraph24 KB (3,697 words) - 15:52, 6 December 2023
- AEPD (Spain) - PS/00192/2022 (category Article 4(2) GDPR)health, culture, and emotional state. This combined with the fact that Article 4(2) GDPR includes "transmission" and "dissemination" in the definition of processing15 KB (2,257 words) - 13:02, 13 December 2023
- OVG Saarlouis - 2 A 355/19 (category Article 6(1)(a) GDPR)of the unlawfully processed data in accordance with Article 58(2)(f) and Article 58(2)(g) GDPR. 2) There is no contradiction in concurrently referring7 KB (754 words) - 08:18, 29 December 2021
- CJEU - C-46/23 - Újpest Önkormányzat Polgármesteri Hivatala (category Article 58(2)(d) GDPR)corrective powers under Article 58(2) GDPR, namely 58(2)(d) and (g) GDPR, may be exercised by the DPA on its own motion. Article 58(2)(c) GDPR, on the other hand6 KB (683 words) - 15:27, 27 March 2024
- Tietosuojavaltuutetun toimisto (Finland) - TSV/224/2023 (category Article 12(2) GDPR)violated Article 5(1)(c) GDPR, Article 5(1)(e) GDPR, Article 12(2) GDPR, Article 12(6) GDPR and Article 25(2) GDPR. In accordance with Article 58(2)(c) GDPR31 KB (4,693 words) - 11:50, 6 March 2024
- Rb. Noord-Nederland - C/ 18/189406/HA ZA 19-6 (category Article 32(2) GDPR)content: [article quoted] [article quoted] [article quoted] [article quoted] [article quoted] [article quoted] [article quoted] [article quoted] [article quoted]105 KB (18,002 words) - 16:24, 10 March 2022
- VDAI - VDAI vs VĮ Registrų centras (category Article 83(2)(a) GDPR)violation committed by the Center of Registers listed in Article 83(2) (b), (c), (e), (f) and (h) GDPR, i. e. the absence of intent, the efforts made to restore8 KB (999 words) - 09:16, 17 November 2023
- AKI (Estonia) - 2.1.-3/19/4304 (category Article 15(1) GDPR)latter of the possibility to exercise their right of access according to Article 15 GDPR, regardless of the fact that the data controller is a public or private13 KB (2,032 words) - 10:30, 13 December 2023
- AKI (Estonia) - 2.1.-6/20/19 (category Article 6 GDPR)publication of the photos a valid legal basis would be needed according to Article 6 GDPR. Consent would be the only proper legal basis here if it meets all the7 KB (982 words) - 10:31, 13 December 2023
- LfDI (Baden-Württemberg) - 0523.1-2/3 (category Article 5(2) GDPR) (section Violation of Article 5(2) GDPR)the proceedings to a violation of Article 5(2) GDPR. Further proceedings regarding potential other violations of the GDPR were provisionally terminated pursuant8 KB (1,137 words) - 10:22, 17 November 2023
- Datatilsynet (Denmark) - 2019-432-0024 (category Article 6(2) GDPR)compliant with data protection rules, on the basis of Article 6(2) read in conjunction with Article 6(1)(e) GDPR. Then, the Datatilsynet focused on two specific13 KB (1,936 words) - 16:37, 6 December 2023
- APD/GBA (Belgium) - 20/2023 (category Article 2(4) GDPR)objection for data processing under Article 21 GDPR and the principle of liability under Article 2(4) GDPR and Article 24 GDPR. The complainant, the data subject14 KB (1,883 words) - 16:59, 20 March 2023
- UODO (Poland) - ZSZZS.440.768.2018 (category Article 58(2)(f) GDPR)connection with Article 5 paragraph 1 point c, Article 9 paragraph 1, Article 58 paragraph 2 point f, point g and point i and with Article 83 paragraph 2 and 3,32 KB (5,139 words) - 10:02, 17 November 2023
- HDPA (Greece) - 24/2020 (category Article 4(2) GDPR)of the data subject's right to access their data (Article 15 GDPR) and the violation of Article 11(2) Law 3471/2006 that concerns the protection of personal8 KB (879 words) - 15:37, 6 December 2023
- Commissioner (Cyprus) - 11.17.001.007.125 (category Article 12(2) GDPR)game company to bring its processing operations into compliance with Article 12(2) GDPR as it found they should implement additional modalities to facilitate3 KB (221 words) - 16:51, 6 December 2023
- Tietosuojavaltuutetun toimisto (Finland) - 6629/163/21 (category Article 12(2) GDPR)reprimand to the controller in accordance with Article 58(2)(b) GDPR. Pursuant to Article 58(2)(d) GDPR, the DPA also ordered the controller to bring its21 KB (3,204 words) - 13:37, 12 January 2024