Search results
From GDPRhub
- NAIH (Hungary) - NAIH-4137- 8/2022 (category Article 5(2) GDPR)data are part of a filing system, in line with Article 2(1) GDPR. Article 4(6) GDPR defines a filing system as "any structured set of personal data, which75 KB (11,860 words) - 13:16, 19 October 2022
- CNIL (France) - SAN-2022-019 (category Article 3(2) GDPR)did not react either. GDPR applicable? (Article 3(2) GDPR) The DPA held that the GDPR was applicable pursuant of Article 3(2) GDPR. Because the controller11 KB (1,452 words) - 17:03, 6 December 2023
- AEPD (Spain) - PS/00140/2022 (category Article 13 GDPR)imposed a fine of €5,000 for the violation of Article 13 GDPR. With regard to the appointment of a DPO, the DPA recalled that Article 37(1)(b) GDPR provides151 KB (23,196 words) - 05:40, 9 May 2023
- IMY (Sweden) - DI-2020-11397 (category Article 44 GDPR)personal data of data subjects guaranteed by Article 44 GDPR and consequently breached Article 44 GDPR. The DPA issued a fine of 300,000 SEK (approx. €25,000)121 KB (13,722 words) - 15:16, 5 July 2023
- Garante per la protezione dei dati personali (Italy) - 9852214 (category Article 58(2)(f) GDPR)in breach of Article 5, Article 6, Article 8, Article 9, and Article 25 GDPR. Consequently, the DPA urgently imposed upon the controller a temporary limitation36 KB (5,598 words) - 10:15, 8 February 2023
- CNIL (France) - SAN-2023-009 (category Article 7(1) GDPR)on which the processing is based pursuant to point (a) of Article 6(1) or point (a) of Article 9(2) and there is no other legal basis for the processing78 KB (12,701 words) - 10:11, 28 June 2023
- DSB (Austria) - 2023-0.583.644 (category Article 5(1)(a) GDPR)prove compliance with Article 5(2) GDPR. The DSB then ascertained whether the controller could lawfully rely on Article 6(1)(f) GDPR as a legal basis, which93 KB (15,554 words) - 10:04, 15 February 2024
- APD/GBA (Belgium) - 53/2020 (category Article 25(2) GDPR)that such a mistake of manipulation, the if applicable, constitutes a security breach and as such a data breach within the meaning of Article 4.12 of the35 KB (5,853 words) - 16:58, 12 December 2023
- CNIL (France) - SAN-2020-009 (category Article 5(1)(a) GDPR)complete information by means of a link to this information. This was a violation of Article 12. Based on Article 13(2)(a) GDPR and WP29 guidelines on transparency48 KB (7,404 words) - 17:09, 6 December 2023
- Garante per la protezione dei dati personali (Italy) - 9860529 (category Article 9 GDPR)stroke a balance between freedom of information and right to privacy. Health data are sensitive data covered by Article 9 GDPR. According to Article 137 of16 KB (2,354 words) - 15:45, 6 December 2023
- APD/GBA (Belgium) - 37/2020 (category Article 17 GDPR)provided for in Article 56(1), read in conjunction with Article 56(2), read in conjunction with Article 56(3), read in conjunction with Article 56(4), read131 KB (22,429 words) - 16:57, 12 December 2023
- Chapter 2 § 6 in the Instrument of Government. The right to free speech is secured in Chapter 2 § 1 in the Instrument of Government and Chapter 2 § 1 of7 KB (793 words) - 14:08, 1 October 2021
- Datatilsynet (Norway) - 20/02375 (category Article 6(1)(f) GDPR)breaching Article 6(1) GDPR, and required the company to implement a policy for conducting credit ratings per Article 24 GDPR. A person lodged a complaint40 KB (5,943 words) - 18:54, 5 March 2022
- APD/GBA (Belgium) - 31/2020 (category Article 5(1)(a) GDPR)infringement of Article 5.1 c) AVG has been proven. f)Transparent information (Article 5.1(a); Article 12.1. and Article 13.1. and 13.2. AVG) 43.The complainant48 KB (7,926 words) - 16:56, 12 December 2023
- AEPD (Spain) - PS/00188/2019 (category Article 5(1)(f) GDPR)to provide as evidence a recording of a call where the caller is identified as A.A.A., provides the contact email ***EMAIL.2 and a meter reading is provided39 KB (6,623 words) - 14:08, 13 December 2023
- AEPD (Spain) - EXP202205206 (category Article 5(1)(f) GDPR)alleged violation of Article 5.1.f) of the RGPD and Article 32 of the GDPR, typified in Article 83.5 of the GDPR and Article 83.4 of the GDPR. C/ Jorge Juan263 KB (41,516 words) - 09:29, 24 April 2024
- Court of Appeal of Brussels - 2019/AR/1600 (category Article 13(2)(a) GDPR)52(1), Article 54(2) and Article 82(2) GDPR. Most importantly, the controller challenged two of the three findings of the DPA, which had led to the fine: the60 KB (9,144 words) - 16:17, 22 March 2022
- IMY (Sweden) - DI-2020-11368 (category Article 44 GDPR)...................... .11 2.2.1 Applicable regulations, etc. ................................................ ...11 2.2.2 The Privacy Protection Authority's115 KB (12,842 words) - 08:38, 5 July 2023
- CNIL (France) - SAN-2019-010 (category Article 21(2) GDPR)to data portability ; (c) where the processing is based on Article 6(1)(a) or Article 9(2)(a), the existence of the right to withdraw consent at any time62 KB (10,001 words) - 17:09, 6 December 2023
- AEPD (Spain) - PS/00341/2019 (category Article 21 GDPR)violated Article 21 GDPR due to unsolicited political propaganda sent after the data subject exercised his right to object. A citizen sent a letter to26 KB (4,032 words) - 14:31, 13 December 2023