Search results
From GDPRhub
- Datatilsynet (Norway) - 19/02985 (category Article 32(1)(b) GDPR)implemented sufficient technical and organisational measures pursuant to Article 32 GDPR in relation to the leakage of pupils personal data to third-parties3 KB (253 words) - 18:52, 5 March 2022
- Tietosuojavaltuutetun toimisto (Finland) - 5546/163/2019 (category Article 32(1) GDPR)could not be considered appropriate in accordance with Article 32(1) GDPR and Article 32(2) GDPR regarding the online appointment booking system. As a result25 KB (3,734 words) - 19:37, 27 March 2024
- LG Bonn - 29 OWi 1/20 (category Article 32(1) GDPR)83(4)(a) GDPR in conjunction with [Article 32(1) GDPR. Article 32 (1) GDPRby failing, at least with gross negligence, to ensure processes for sufficient authentication58 KB (9,577 words) - 08:06, 16 September 2021
- Datatilsynet (Denmark) - 2020-442-8866 (category Article 32(1) GDPR)of for shredding. 4.1. Article 32 of the Data Protection Regulation Pursuant to Article 32 (1) of the Data Protection Regulation 1, the data controller20 KB (3,045 words) - 16:40, 6 December 2023
- ANSPDCP (Romania) - SC Medicover SRL (category Article 32(1)(b) GDPR)address. The Romanian DPA found a violation of Article 32(1)(b), Article 32(2) and Article 32(4) of the GDPR and fined SC Medicover SRL €2,000. Share your5 KB (575 words) - 15:21, 13 December 2023
- ANSPDCP (Romania) - 04.01.2023 (category Article 32(1)(b) GDPR)violation of Article 32 GDPR, the "Security of processing". More specifically, the controller violated Article 32(1)(b), 32(2), and 32(4) GDPR. For its breaches4 KB (471 words) - 15:15, 13 December 2023
- ANSPDCP (Romania) - Fine against Telekom Romania Communications (category Article 32(1)(b) GDPR)violating Article 32 GDPR. The DPA took also the corrective measure to order the operator to bring its processing operations into compliance with the GDPR according4 KB (456 words) - 15:18, 13 December 2023
- Datatilsynet (Norway) - 20/01984 (category Article 32(1)(b) GDPR)breach of Article 32? The DPA concluded that the municipality had breached the required information security requirements as per Article 32(1)(b), cf. Article6 KB (653 words) - 18:55, 5 March 2022
- Datatilsynet (Norway) - 18/02579 (category Article 32(1)(b) GDPR)subsequent violations of Article 32(1)(b) GDPR and Article 32(1)(d) GDPR and of the principle of accountability as foreseen in Article 5(2) GDPR read in conjunction41 KB (6,337 words) - 18:52, 5 March 2022
- Datatilsynet (Denmark) - 2020-31-4131 (category Article 32(1) GDPR)the rules on e.g. data protection. It follows from Article 32 (1) of the Data Protection Regulation 1, that data controllers and data processors, taking24 KB (3,651 words) - 16:38, 6 December 2023
- ANSPDCP (Romania) - 12.01.2023 (category Article 32(1)(b) GDPR)data. Hence, the controller violated Articles 32(1)(b) and 32(2) GDPR. Pursuant to its Article 58(2) GDPR statutory powers, the DPA ordered the controller5 KB (613 words) - 15:13, 13 December 2023
- IMY (Sweden) - DI-2021-5595 (category Article 32(1) GDPR)of approximately €150,000 (1,600,000 SEK) on the University Hospital Board for the violation of Articles 5(1)(f) and 32(1) GDPR. The data breach notification47 KB (5,207 words) - 18:51, 21 March 2022
- ANSPDCP (Romania) - 27.12.2022 (category Article 32(1)(b) GDPR)would have been required by Article 29 GDPR. Moreover, in violation of Article 32(1)(b), Article 32(2), and Article 34(4) GDPR, the controller had not implemented6 KB (790 words) - 15:13, 13 December 2023
- CNIL (France) - SAN-2020-015 (category Article 32(1) GDPR)obligation of Article 32 GDPR? Does the fact that this health data is not encrypted constitute a breach of the security obligation under Article 32 GDPR? Does29 KB (4,374 words) - 16:03, 19 January 2024
- AEPD (Spain) - PS/00287/2020 (category Article 32(1) GDPR)Online Levante, S.L.: for the infringement of Article 5(1)(f), €2,000. for the infringement of Article 32(1), €1,000. Share your comments here! Share blogs32 KB (4,837 words) - 14:26, 13 December 2023
- AEPD (Spain) - PS/00483/2020 (category Article 32(1) GDPR)Asesoria Alpi Clua: for the infringement of Article 5(1)(f), €2,000. for the infringement of Article 32(1), €1,000. Share your comments here! Share blogs32 KB (4,834 words) - 14:43, 13 December 2023
- UODO (Poland) - DKN.5130.2815.2020 (category Article 32(1) GDPR)and Article 58(2)(b) in connection with Article 5(1)(f), Article 24(1), Article 25(1), Article 32(1) and (2) of 2 of Regulation EU 2016/679 of the European37 KB (5,819 words) - 09:58, 17 November 2023
- Garante per la protezione dei dati personali (Italy) - 9544504 (category Article 32(1)(b) GDPR)Articles 5(1)(a), (d) and (f), 9 and 32(1)(b) GDPR.” Pursuant to Article 58(2)(i), the DPA hence imposed an administrative fine as per Article 83(4) and10 KB (1,206 words) - 15:54, 6 December 2023
- CNPD (Portugal) - Deliberação 984/2018 (category Article 32(1)(b) GDPR)the combined provisions of article 32, paragraph 1, subparagraphs b) and d) and article 83, paragraph 4, al.a), of the GDPR, with a fine of € 0.00 to €40 KB (5,935 words) - 16:55, 6 December 2023
- Datatilsynet (Norway) - 20/01879 (category Article 32(1)(b) GDPR)highly sensitive personal data exposed, thus breaching Article 32(1)(b) GDPR and Article 32(2), cf. Article 24. An employee in a municipal health care center30 KB (4,302 words) - 18:53, 5 March 2022