Search results

officially consolidated text, hereinafter ZVOP-1), and 2 Article 43 of the Information Commissioner Act (Official Gazette RS, No. 113/05, hereinafter ZInfP)

required in principle (see hereunder Article 65(2) GDPR) to adopt a decision under Article 65 GDPR is reached, since Article 64 GDPR only requires a simple majority

paragraph 2 of this Article. The implementing act shall be adopted in accordance with the examination procedure referred to in Article 93(2). 4. The Commission

actual processing. If the information under Articles 13 or 14 GDPR and Article 15 GDPR would be the same information, Article 15(1) GDPR would be largely

exemption is based on Article 85(2) GDPR. According to Article 26(3) of the 2018 Act, certain GDPR provisions (listed in Article 26(9)) will not apply

Regulation Article 5 paragraph 1 subparagraph a Article 7 Article 9 Data Protection Act Section 6 subsection 1 paragraph 1 Insurance Contract Act Section

of the information gathered, the DPA held that the controller had violated Article 5(1)(a) GDPR, Article 5(1)(c) GDPR, Article 9 GDPR and Article 25(2)

that the controller had violated Article 5(1)(a) GDPR, Article 12 GDPR, Article 13 GDPR, Article 15 GDPR and Article 25(1) GDPR. As a result, the DPA issued

data. On the basis of the information gathered, the DPA held that the controller had violated Article 5(1)(e) GDPR and Article 25(2) GDPR. As a result,

data on behalf of the data subject under Article 15 GDPR; and 3) Article 6(1)(1) of the Finnish Data Protection Act (Tietosuojalaki) which allows insurance

very letter of the provisions of III of Article 45 of the Act of January 6, 1978 as amended, resulting from Act no. 2018-493 of June 20, 2018 aimed at bringing

the grounds that the conduct of the Commissioner violated the right to be heard. The court referred to Article 43(1),(2) Law N. 158 (I)/1999, which is

preparatory act and only the act adopted by the third party can, where appropriate, be classified as a ‘decision’ within the meaning of Article 22(1) of that

before before the issuance of the annulled act. 3.1.2 Article 47 of the General Principles of Administrative Law Act 1999 (158(I)/1999), provides that: 4 47

that the article’s publication was in violation of Article 5(1)(c) GDPR, Article 6(1)(f) GDPR, when read in line with Article 85 GDPR. Article 5(1)(c) outlines

verification of the information provided to the authority. Naturally, information about an individual from the police is not retained, and information obtained during

breach of article 33 of the Rules. III.On corrective measures and publicity 39. Under the terms of III of article 20 of the Data Protection Act: When the

"GDPR"), which came to the attention of the Information Commissioner ("the Commissioner"). 1.2 The Commissioner considers that Ticketmaster was the controller

basis of the information presented by the controller, the Cyprus Commissioner considered that the legal basis should be consent, under Article 6(1)(a) GDPR

the requirements set in Article 82 of the Data Protection Act is set out in Article 3, paragraph I, of the Data Protection Act which provides: without

of the information gathered, the DPA held that the controller had violated Article 5(1)(f) GDPR, Article 17(1) GDPR, Article 25(1) GDPR, Article 32(1) GDPR

2020/369 Subject matter: Information for the individual, Legal bases, Consent, Education Legal act: Opinion The Information Commissioner (hereinafter: IP) has

LA 104/19, ECLI:DE:OVGNI:2020:0722.11LA104.19.00 Article 1 (1) GG, Article 2 (1) GG, § 7aF DSG ND, § 43 VwGO Proceedings VG Osnabrück, 30 January 2019,

credit information register are widely released for various purposes. Pursuant to Section 19 of the Credit Information Act, payment default information can

(violated article: Article 25) and those in accordance with Article 83(5) of the General Data Protection Regulation ( Article violated: Article 5) to the

Regulation) Article 1, paragraph 2, Article 5, Article 6, paragraph 1, subparagraph f, Article 17(1)(a), (c) and (d), Article 17(3)(a), Article 21(1) Judgments

people to read complete information by means of a link to this information. This was a violation of Article 12. Based on Article 13(2)(a) GDPR and WP29

details. Enforcement Notice issued by the Information Commissioner concerning contraventions of Article 5(2) and Article 35 UK GDPR by the Home Office ENFORCEMENT

decision have been taken by the controlled. 43. In view of the above, the restricted panel concludes that Article 38.3 of the GDPR does not have been respected

complained, the then X AG, said the Thuringian state commissioner for data protection and freedom of information with reference to Section 4f Paragraph 2 BDSG

January 1978 relating to information technology, files and liberties (hereafter referred to as the Data Protection Act or the Act of 6 January 1978) and

not completely determined by it. This already follows from Article 1.3, Article 20.3 and Article 93.1 No. 4a of the Basic Law. According to these, the commitment

company of the information and electronic commerce (hereinafter referred to as the ISESA), as provided for in 43.1 of the said Act. Article 85 of Law 39/2015

entitled to erasure under Article 17(1)(d) GDPR, as the data processing was not lawful. In any case, the requirements of Article 6 GDPR were no longer met

provide, beyond the mere information about the data loss itself, that the information and measures mentioned in Article 33(1)(b) to Article 33(1)(d) GDPR must

on the users device. Article 82 of the French Data Protection Act The DPA explained that Article 82 of the French Data Protection Act required the provider

protection law and further orders of the State Commissioner for Data Protection and Freedom of Information of Rhineland-Palatinate - LfDI - requiring him

exclude information from your response to a SAR merely because it is difficult to access. The Act deals with the situation where supplying information in permanent

the Spanish Act transposing the e-Privacy Directive? The AEPD held that there had been an infringement of Article 22(2) of the Information Society Services

applicable law 33. The first paragraph of Article 87 of the Data Protection Act, Article I of Title III of the Act provides: this Title shall apply without

given informed valid consent to receive such calls. The Information Commissioner (“Commissioner”) was tasked with determining whether the conduct of Unite

Personal information is defined as any kind of information about an identified or identifiable natural person. Thus, there is no doubt that information about

Did the provider violate Article 82 of the Data Protection Act? The DPA explained that Article 82 of the Data Protection Act required the provider to ask

second level of information information, i.e. the information note available on the website, contains all the information required under Article 13 of the GDPR

freedoms. The commissioner therefore considers that there is an Article 6 basis for processing (in this case article 6(1)(f). Moreover, the Commissioner specifies

pursuant to Article 17(2) DPA Act. 9. Moreover, as regards the one-stop-shop mechanism, Article 56 GDPR states: "Without prejudice to Article 55, the supervisory

provided for in Article 56(1), read in conjunction with Article 56(2), read in conjunction with Article 56(3), read in conjunction with Article 56(4), read

the Federal Commissioner for Data Protection and Freedom of Information, the Hamburg Commissioner for Data Protection and Freedom of Information as well as

requests were requests for information according to Article 15(1) GDPR. The ‘Business secrecy’ exception only applied to Article 15(4) GDPR, where a data

the Commissioner required information from AAEA with respect to the processing of X's personal data. AAEA however did not reply to the Commissioner. The

of the data subjects, therefore breaching Article 6 GDPR, as well as Article 5(1)(b) GDPR. Thirdly, Article 30 GDPR stipulates that the controller must

original for more details. 1 DATA PROTECTION ACT 1998 SUPERVISORY POWERS OF THE INFORMATION COMMISSIONER MONETARY PENALTY NOTICE To: Virgin Media Limited

English original for more details. DATA PROTECTION ACT 1998 SUPERVISORY POWERS OF THE INFORMATION COMMISSIONER MONETARY PENALTY NOTICE To: Tempcover Ltd Of:

a violation of Article 5(2) GPDR since the controller failed to demonstrate compliance with Article 5(1) GDPR and a violation of Article 44 GDPR since the

English original for more details. DATA PROTECTION ACT 1998 SUPERVISORY POWERS OF THE INFORMATION COMMISSIONER MONETARY PENALTY NOTICE To: SportsDirect.com Retail

English original for more details. DATA PROTECTION ACT 1998 SUPERVISORY POWERS OF THE INFORMATION COMMISSIONER MONETARY PENALTY NOTICE To: Royal Mail Group Limited

the fine, the criteria specified in the same article 83. " Article 83 of the GDPR, as referred to in Article 20, paragraph III, of the "Informatique et Libertés"

February 27, 2020, in accordance with Article 56 of the GDPR, all the European supervisory authorities of its competence to act as lead supervisory authority and

has reinforced its second level of information by recording a message containing all the information required by article 14 of the GDPR, accessible from this

details. • ICO. Information Commissioner's Office DATA PROTECTION ACT 2018 (PART 6, SECTION 155) SUPERVISORY POWERS OF THE INFORMATION COMMISSIONER MONETARY PENALTY

requests it. ". 26. Article D. 213-1 of the same code provides that "[t]he amount mentioned in article L. 213-1 is set at 120 euros" and article D. 213-2 provides

more details. • ICO. Information Commissioner's Office DATA PROTECTION ACT 1998 SUPERVISORY POWERS OF THE INFORMATION COMMISSIONER MONETARY PENAL TY NOTICE

the article 15.1. a), b), c) and d) of the GDPR […] information was missing in the note information on the following points:  Point b) of Article 15.1

personal data under Article 9 GDPR, which can only be lawful if one of the exceptions of Article 9(2) GDPR apply. With respect to Article 9(2)(h) GDPR, the

Slovenia and the Information Commissioner (Article 19). On the basis of the information you have provided, hereinafter referred to as Article 58 of Regulation

more details. • ICO. Information Commissioner's Office DATA PROTECTION ACT 1998 SUPERVISORY POWERS OF THE INFORMATION COMMISSIONER MONETARY PENAL TY NOTICE

more details. • ICO. Information Commissioner's Office DATA PROTECTION ACT 1998 SUPERVISORY POWERS OF THE INFORMATION COMMISSIONER MONETARY PENALTY NOTICE

Therefore, pursuant to Article 27(3) of the Act, in conjunction with Article 27(1)(2) of the Act, and applying Article 52(3) of the Act, the offender shall

more details. • ICO. Information Commissioner's Office DATA PROTECTION ACT 1998 SUPERVISORY POWERS OF THE INFORMATION COMMISSIONER ENFORCEMENT NOTICE To:

officially consolidated text, hereinafter ZVOP-1), and 2 Article 43 of the Information Commissioner Act (Official Gazette RS, No. 113/05, hereinafter ZInfP)

English original for more details. DATA PROTECTION ACT 1998 SUPERVISORY POWERS OF THE INFORMATION COMMISSIONER MONETARY PENALTY NOTICE To: Papa John’s (GB) Limited

ePrivacy Directive. Article 5(3) of that directive was transposed into domestic law through Article 82 of the French Data Protection Act. The CNIL therefore

paragraph of Article 49 of the Personal Data Protection Act (Official Gazette RS, No. 94/07-UPB1, hereinafter: ZVOP-1), and 2 Article 43 of the Information Commissioner

specific act or series of processing acts, it is required that impact assessment and prior consultation with the Commissioner.' 14. Pursuant to Article 58(2)

punished by the combined provisions of article 44, paragraph 2 of article 46 and paragraph c) of paragraph 5 of article 83, both of the RGPD, with a fine of

matter to the Information Commissioner (“the Commissioner and/or the Respondent”) by section 50 FOIA.   On the 7th November 2022 the Commissioner issued the

Protection Act (1050/2018). Article 5 of the TSA stipulates the principles regarding the processing of personal data. According to Article 5, paragraph

officially consolidated text, hereinafter ZVOP-1), and 2 Article 43 of the Information Commissioner Act (Official Gazette RS, No. 113/05, hereinafter ZInfP)

ICO's capacity under the Freedom of Information Act. Is the information personal data within the meaning of Article 4(1) GDPR? Does a disclosure of personal

more details. THE DATA PROTECTION ACT 2018 (PART 6, SECTION 149) ENFORCEMENT POWERS OF THE INFORMATION COMMISSIONER ENFORCEMENT NOTICE To: Emailmovers

more details. • ICO. Information Commissioner's Office DATA PROTECTION ACT 1998 SUPERVISORY POWERS OF THE INFORMATION COMMISSIONER MONETARY PENAL TY NOTICE

the obligation to provide information (Article 13 GDPR) The DPA stated that at the time of the investigation, the information regarding data retention periods

more details. • ICO. Information Commissioner's Office DATA PROTECTION ACT 1998 SUPERVISORY POWERS OF THE INFORMATION COMMISSIONER MONETARY PENAL TY NOTICE

to a breach of Article 5 or Article 32. The obligation under Article 5 GDPR i to ensure appropriate security; the obligation under Article 32 i to implement

English original for more details. DATA PROTECTION ACT 1998 SUPERVISORY POWERS OF THE INFORMATION COMMISSIONER MONETARY PENALTY NOTICE To: We Buy Any Car Limited

right to informational self-determination from Article 2(1) in conjunction with Article 1(1) GG, the negative freedom of belief from Article 4(1) GG and

Fundamental Rights (Article 8 (1) in conjunction with Article 8 (3) CFR) is protected by Article 77 (1) GDPR in conjunction with Article 77 (1) CFR. Art.

and 8 of the Information Commissioner Act (Official Gazette of the Republic of Slovenia, no. 113/07 – ZUstS-A, hereinafter : ZInfP) and Article 95 of the

order to avoid anyto remove any ambiguity in this regard.43. Article 5, §1 of the National Register Act stipulates that the Minister of the Interior is competentis

original for more details. Information Commissioner's Office DATA PROTECTION ACT 1998 SUPERVISORY POWERS OF THE INFORMATION COMMISSIONER MONETARY PENALTY NOTICE

details. ICO. Information Commissioner'sOffice DATA PROTECTION ACT 2018 (PART 6, SECTION 155) SUPERVISORY POWERS OF THE INFORMATION COMMISSIONER MONETARY PENALTY

paragraph of Article 49 of the Personal Data Protection Act (Official Gazette RS, No. 94/07-UPB1, hereinafter ZVOP-1 ) and Article 2 of the Information Commissioner

of Article 5-1 c) of the GDPR is established for these facts. B. On the breach of the obligation to limit the retention period of data 43. Article 5-1

for more details. DATA PROTECTION ACT 2018 (PART 6, SECTION 155) SUPERVISORY POWERS OF THE INFORMATION COMMISSIONER MONETARY PENALTY NOTICE TO: The Central

access information provided for in Article 15 of the Data Protection Regulation. 2. The initiator has submitted a request in accordance with Article 15 of

paragraph of Article 49 of the Personal Data Protection Act (Official Gazette RS, No. 94/07-UPB1, hereinafter ZVOP-1), and 2 Article 43 of the Information Commissioner

officially consolidated text, hereinafter ZVOP-1), and 2 Article 43 of the Information Commissioner Act (Official Gazette RS, No. 113/05, hereinafter ZInfP)

claimed party, for the alleged violation of Article 5.1.f) of the GDPR and Article 32 of the GDPR, typified in Article 83.5 of the GDPR. FIFTH: Notified of the

• I C O . Information Commissioner's Office DATA PROTECTION ACT 2018 (PART 6, SECTION 155) SUPERVISORY POWERS OF THE INFORMATION COMMISSIONER MONETARY PENALTY

requirements provided for in Article 82 of the Data Protection Act is set out in Article 3, paragraph I, of the Data Protection Act, which provides as follows