Search results
From GDPRhub
- Article 83 GDPR (category GDPR Articles) (section (6) Non-compliance with orders pursuant to Article 58(2) GDPR)flows by the SA pursuant to Article 58(2) GDPR or failure to provide access in violation of Article 58(1) GDPR. Article 83(6) GDPR is a superfluous provision55 KB (7,622 words) - 14:04, 7 November 2023
- Tietosuojavaltuutetun toimisto (Finland) - 8492/163/20 (category Article 58(2)(d) GDPR)administrative penalty fee: 1) Article 5, Paragraph 1, subparagraphs d and a; 2) Article 13; 3) paragraph 3 of Article 12; and 4) Article 15(1). Viking Line Oy149 KB (24,224 words) - 12:20, 2 January 2023
- Article 6 GDPR (category GDPR Articles) (section Tension with Article 5 and 12 GDPR in case of routine reliance on Article 6(4) GDPR)possible "legitimate interest" under Article 6(1)(f) GDPR. Equally to Article 6(1)(c) GDPR, Article 6(2) and (3) GDPR require that Union or Member State108 KB (17,005 words) - 15:39, 18 March 2024
- DVI (Latvia) - Nacionālajam veselības dienestam (category Article 24(1) GDPR)based on Article 3, paragraph 2, Article 5, paragraph 1 a), f) of GDPR subsection, Article 6(1), Article 9(2), Article 58(2)(d), GDPR Article 23 and Article22 KB (3,276 words) - 11:46, 26 July 2023
- AEPD (Spain) - PS/00003/2020 (category Article 5(1)(c) GDPR)to the complaint (Article 83 (2) (f) GDPR), not linking the activity of the offender to the processing of personal data (Article 76 (2) (b) LOPDGD), the50 KB (7,524 words) - 13:44, 13 December 2023
- Datatilsynet (Denmark) - 2023-431-0001 (category Article 58(2)(d) GDPR)breached Article 6(1)(e) GDPR and ordered all 53 municipalities to bring their processing in line with Article 5(1)(a) GDPR, Article 6(1) GDPR, by ensuring158 KB (25,068 words) - 12:28, 14 February 2024
- Datatilsynet (Denmark) - 2023-432-0016 (category Article 9(2)(a) GDPR)with Article 9(2)(a) GDPR and Article 6(1)(a) GDPR. Thus, the Danish DPA held that the processing was also not following the principles of Article 5(1)46 KB (7,192 words) - 12:37, 19 December 2023
- ANSPDCP (Romania) - Fine to Farmacia Ardealul SRL (category Article 32(1)(d) GDPR)of RON 12,424 (approximately €2,500). At the same time, the DPA imposed a corrective measure based on Article 58(2)(d) GDPR and ordered the controller to5 KB (572 words) - 09:37, 6 July 2023
- IP (Slovenia) - 07141-9/2023/10 (category Article 58(2) GDPR)deletion request of the data in question, breaching Article 17(1) GDPR. Pursuant to Article 58(2)(d) GDPR, the DPA ordered the controller to remedy the irregularities6 KB (553 words) - 14:57, 6 December 2023
- ANSPDCP (Romania) - Sanction against Tensa Art Design SA (category Article 21(3) GDPR)basis of Article 6(1)(e) GDPR - public interest - or the legal basis of Article 6(1)(f) GDPR - legitimate interest. Moreover, Article 21(3) GDPR specifically5 KB (621 words) - 13:51, 21 February 2023
- ANSPDCP (Romania) - Fine against Glove Technology SRL (category Article 58(1)(a) GDPR)GDPR. As result, the controller was fined approximately €5,000 (RON 24,745). Furthermore, using their powers laid down in Article 58(2)(d) GDPR , the DPA5 KB (668 words) - 09:34, 26 November 2021
- ANSPDCP (Romania) - 13.03.2023 (category Article 12 GDPR)9871 (approximately €2000) for these violations. In accordance with Article 58(2)(d) GDPR, the DPA also imposed corrective measures. First, the DPA ordered6 KB (786 words) - 12:38, 21 March 2023
- ANSPDCP (Romania) - Comunicat Presa 09 12 2022 (category Article 25 GDPR)data transmitted, stored or otherwise processed." As such, under Article 58(2)(d) GDPR, the controller was ordered to take into account the risk assessment7 KB (866 words) - 14:23, 21 December 2022
- DSB (Austria) - D130.1178 2023-0.631.894 (category Article 7(3) GDPR)the wording of Article 77(1) GDPR and from Article 58(2)(d) GDPR that national DPAs only have competence to take action with respect to GDPR violations that6 KB (787 words) - 16:19, 16 February 2024
- DPC (Ireland) - IN-20-8-1 (category Article 45 GDPR)with Chapter V of the GDPR. Therefore, it requested the Irish DPA to adopt against Meta an order pursuant to Article 58(2)(d) GDPR. The EDPB also established7 KB (952 words) - 10:22, 24 May 2023
- ANSPDCP (Romania) - 23.03.2023 (category Article 5(2) GDPR)9,798.6 (approximately €2000). In accordance with Article 58(2)(d) GDPR, the DPA also imposed corrective measures. First, it ordered the data controller8 KB (1,015 words) - 07:23, 5 April 2023
- APD/GBA (Belgium) - 24/2021 (category Article 35(2) GDPR)the basis of article 6.1 e) GDPR read together with articles 5.2 GDPR and 24.1 GDPR. 3) Violation of Articles 12.1, 12.6, 13.1 and 13.2 GDPR: the Inspection110 KB (18,238 words) - 16:56, 12 December 2023
- Article 15 GDPR (category GDPR Articles) (section Additional information under Article 15(1)(a) to (h))further details see Article 14(1)(d) GDPR. Similar to the ex-ante information in Article 13(1)(e) and 14(1)(e) GDPR, Article 15(1)(c) GDPR requires the controller73 KB (9,896 words) - 15:46, 18 March 2024
- APD/GBA (Belgium) - 04/2021 (category Article 5(1) GDPR)before May 25, 2018. 2.2. Consent and the lawfulness of the processing (Article 4, point 11, Article 6 (1) in conjunction with Article 7 GDPR) 121. With regard113 KB (18,732 words) - 16:50, 12 December 2023
- ANSPDCP (Romania) - Fine against Asociația de Proprietari Aviației Park (category Article 5(2) GDPR)the DPA ordered the controller under Article 58(2)(d) GDPR to bring is processing into compliance with the GDPR by: reviewing and updating the technical9 KB (1,228 words) - 14:38, 22 June 2022
- ANSPDCP (Romania) - 21.08.2023 (category Article 25 GDPR)under Article 83(2) and (3) GDPR. As such, Uipath SRL was fined 346,598 RON, equivalent to €70,000. In addition, pursuant to Article 58(2)(d) GDPR, the10 KB (1,393 words) - 14:16, 5 September 2023
- Article 32 GDPR (category GDPR Articles) (section (d) Regularly testing, assessing and evaluating...)evaluating the effectiveness of security measures (Article 32(1)(d) GDPR). According to Article 4(5) GDPR, "pseudonymisation" means the processing of personal41 KB (5,197 words) - 12:17, 17 April 2024
- Garante per la protezione dei dati personali (Italy) (section Complaints Procedure under Art 77 GDPR)reference, see Article 143 of the Code). However, detailed time-limits can be found in Regolamento n. 2/2019 cited above. Under Article 154 of the Code7 KB (808 words) - 08:17, 16 February 2023
- Article 57 GDPR (category GDPR Articles) (section (a) Monitor and enforce the application of the GDPR)commentary to Article 60 GDPR, Article 61 GDPR, Article 62 GDPR, Article 63 GDPR, Article 64 GDPR, Article 65 GDPR, Article 66 GDPR and Article 56 GDPR. The SA60 KB (7,796 words) - 20:12, 1 April 2024
- DPC (Ireland) - IN-21-2-5 (category Article 5(1)(f) GDPR)pursuant to Article 58(2)(b) GDPR. In accordance with article 83 GDPR, and taking into account the factors outlined in Article 58(2)(i) GDPR, the DPC also13 KB (1,849 words) - 02:28, 23 February 2023
- Datatilsynet (Denmark) - 2021-7329-0052 (category Article 26 GDPR)Articles 5(2) and 24(1) GDPR as to how it demonstrates its compliance with the GDPR. This order is notified pursuant to Article 58(2)(d) GDPR. According104 KB (14,260 words) - 13:54, 9 June 2023
- reliance on Article 6(1)(f) GDPR or at least exercise the right to object under Article 21 GDPR. If the legal basis is Article 6(1)(f) GDPR (i.e. 'legitimate71 KB (9,532 words) - 13:30, 6 March 2024
- categories of data established in Article 9(2)(a) GDPR, Article 9(2)(c) GDPR, Article 9(2)(g) GDPR and Article 9(2)(i) GDPR directly correlate with a specific44 KB (5,905 words) - 14:00, 24 October 2023
- Article 17 GDPR (category GDPR Articles) (section (ii) Erasure following objection under Article 21(2))provided for in Article 6(1)(a) GDPR or, as the case may be, Article 9(2)(a) GDPR, and consent is withdrawn according to Article 7(3) GDPR, data must be61 KB (8,488 words) - 15:47, 18 March 2024
- OVG Hamburg - 5 Bs 152/20 (category Article 58(2) GDPR)service. Finally, in June 2020, the DPA issued a decision based on Article 58(2)(d) GDPR. The property company filed an application for interim relief against45 KB (7,219 words) - 13:48, 24 January 2022
- Tietosuojavaltuutetun toimisto (Finland) - 7635/162/21 (category Article 6(2) GDPR)pursuant to Article 58(2)(b) GDPR and ordered the controller to bring its processing operations in compliance with the GDPR, pursuant to Article 58(2)(d) GDPR16 KB (2,293 words) - 17:30, 23 February 2022
- AKI (Estonia) - 2.1.-5/22/22012 (category Article 6(1)(d) GDPR)controller processed personal data without a legal basis. Pursuant to Article 58(2)(d) GDPR, the DPA ordered the controller to stop publishing posts containing18 KB (2,695 words) - 12:21, 31 January 2023
- with Article 13, Article 14 GDPR gives expression to the principle of transparency enshrined in Article 5(1)(a) GDPR and further defined in Article 12 GDPR47 KB (5,644 words) - 17:49, 5 March 2024
- Article 33 GDPR (category GDPR Articles) (section (2) Processor's notification in the event of a personal data breach)nung, Article 33 GDPR, margin number 15 (C.H. Beck 2018, 2nd edition). König, Schaupp, in Knyrim, Der Datkomm, Article 79 GDPR, margin number 58/1 (rdb54 KB (6,536 words) - 08:22, 16 June 2023
- Persónuvernd (Iceland) - Case no. 2021122409 (category Article 5(1)(f) GDPR)4(1) GDPR. Moreover, it noted that all processing of personal data has to comply with Article 6 GDPR and the principles of Article 5(1) GDPR, which also included19 KB (2,776 words) - 15:39, 6 December 2022
- AKI (Estonia) - 2.1.-4/22/2585 (category Article 5 GDPR)subsection 1, subsection 2 clause 8, § 58 subsection 1 of the Personal Data Protection Act and personal data on the basis of Article 58(2)(d) of the General Regulation19 KB (2,941 words) - 09:40, 11 January 2023
- Article 23 GDPR (category GDPR Articles) (section (d) Prevention, investigation, detection or prosecution of criminal offenses)access (Article 15 GDPR), rectification (Article 16 GDPR), erasure (Article 17 GDPR), restriction of processing (Article 18 GDPR), notification obligation44 KB (4,896 words) - 06:25, 16 June 2023
- from Articles 13(2)(b) and 14(2)(c) GDPR. However, Article 21(4) GDPR specifies that the right to object under Article 21(1) and 21(2) GDPR (i.e. the right49 KB (5,993 words) - 06:22, 16 June 2023
- Datatilsynet (Norway) - 21/03656 (category Article 12(2) GDPR)having infringed Article 14 GDPR by failing to provide all of the relevant information required therein. Pursuant to Article 58(2)(d) GDPR, Datatilsynet orders63 KB (8,745 words) - 13:33, 27 April 2022
- Article 16 GDPR (category GDPR Articles)However, Article 5(1)(d) GDPR gives the controller some leeway to continue processing inaccurate data - see more details under Article 5(1)(d) GDPR. Article23 KB (2,489 words) - 23:24, 6 March 2024
- DVI (Latvia) - LocateFamily administrācija (category Article 5(1)(b) GDPR)based on Article 3, Clause 2, Article 5, Clause 1 of the Data Regulation "a", "b" and point 2, Article 6, point 1, point "a", Article 7, Article 27, point25 KB (3,679 words) - 11:30, 2 August 2023
- Tietosuojavaltuutetun toimisto (Finland) - 2245/163/2019 (category Article 25(2) GDPR)DPA found that the controller violated Article 5(1)(c) and Article 25 GDPR. In accordance with Article 58(2)(d) GDPR, the DPA ordered the controller to bring20 KB (3,195 words) - 15:22, 2 March 2022
- applicability of Article 49(1) GDPR, the documentation of suitable safeguards (Article 30(2)(c) GDPR). See commentary under Article 30(1)(e) GDPR. The processor's31 KB (3,327 words) - 15:31, 5 June 2023
- Article 34 GDPR (category GDPR Articles) (section (2) Minimal requirements of the controller's communication to the data subject)access. See comment under Article 33(3)(d) of the GDPR. As indicated by the phrase “at least” found under Article 34(2) GDPR, this list of information37 KB (3,962 words) - 15:20, 16 June 2023
- elements in Article 2(1) are fulfilled, the GDPR applies unless the processing falls under one of the exemptions named in Article 2(2)(a) to (d) GDPR. The first34 KB (4,652 words) - 12:07, 12 November 2023
- Article 46 GDPR (category GDPR Articles) (section (c) Standard data protection clauses adopted by the Commission under Article 93(2))access (Article 15 GDPR), rectification (Article 16 GDPR), deletion (Article 17 GDPR), restriction of processing (Article 18 GDPR), objection (Article 21 GDPR)34 KB (3,646 words) - 08:53, 27 March 2023
- Article 39 GDPR (category GDPR Articles) (section (d)(e) Cooperatian with the supervisory authority)from any of the GDPR’s protections. → You can find all related decisions in Category:Article 39 GDPR Just as Article 38 GDPR, Article 39 GDPR also shows similarities23 KB (2,165 words) - 15:10, 27 July 2023
- AEPD (Spain) - PS/00140/2020 (category Article 58(2)(d) GDPR)according to Article 58(2)(d) GDPR. First, the AEPD established that the GDPR was applicable under Article 3(1) GPDR or, if not, at least Article 3(2)(a) GDPR390 KB (63,154 words) - 07:08, 9 June 2022
- APD/GBA (Belgium) - 07/2024 (category Article 5(1)(c) GDPR)the GDPR: i. Articles 5.1.a) and 5.2, as well as Article 6.1 GDPR; ii. Articles 12.1 and 12.2, Article 15.1, Article 5.2, Article 24.1, and Article 25.1350 KB (51,369 words) - 09:25, 31 January 2024
- Article 41 GDPR (category GDPR Articles) (section (2) Criteria for accreditation from the competent supervisory authority)clear from the wording of Article 41(1) GDPR. Article 41(1) GDPR does not define accreditation. Nonetheless, Article 41(2) GDPR provides a criterion against30 KB (2,720 words) - 14:02, 28 July 2023
- must also be involved in the drafting of the DPIA under Article 35(2) GDPR and Article 39(1)(c) GDPR, and their advice should be recorded by the controller52 KB (7,297 words) - 08:05, 18 July 2023
- Article 18 GDPR (category GDPR Articles) (section (d) Objection to processing under Article 21(1) GDPR)contrast to Article 23(1)(e) GDPR, which sets out strict requirements for the Union or Member State's law restricting GDPR rights, Article 18(2) GDPR does not32 KB (3,730 words) - 08:43, 7 March 2024
- provided for in Article 52(3) GDPR and Articles 53(3) and 53(4) GDPR. For more information on SA members and staff, please refer to Article 52(2) GDPR (SA members)34 KB (3,649 words) - 13:19, 30 October 2023
- deadline of Article 36(1) GDPR, and it is still disputed whether the outcome of the procedure rather resembles that of Article 58(3)(a) GDPR or Article 58(3)(b)31 KB (3,646 words) - 08:51, 21 July 2023
- Article 49 GDPR (category GDPR Articles) (section (d) Necessary for Important Reasons of Public Interest)Regulation (GDPR): A Commentary, Article 49 GDPR, p. 846 (Oxford University Press 2020). EDPB, ‘Guidelines 2/2018 on derogations of Article 49 under Regulation29 KB (3,500 words) - 08:54, 27 March 2023
- EDPB - Binding Decision 4/2022 - 'Meta (Instagram)' (category Article 58 GDPR)reasoned in accordance with Article 4(24) GDPR and, after conducting its own assessment of the factors under Article 83(2) GDPR, found that the proposed fine468 KB (51,340 words) - 14:10, 30 January 2023
- DPC (Ireland) - Whatsapp Ireland Limited - IN-18-5-6 (category Article 58 GDPR)imposition of an administrative fine (7.2). Accordingly, the DPC made an order pursuant to Article 58(2)(d) GDPR, requiring Whatsapp IE to bring processing32 KB (4,686 words) - 14:17, 1 February 2023
- mechanism referred to in Article 63 GDPR (Article 28(8) GDPR). The Commission has made use of its power under Article 28(7) GDPR and published standard contractual72 KB (9,140 words) - 13:12, 2 June 2023
- a binding dispute resolution procedure in accordance with Article 65 GDPR. Article 64(2) GDPR allows any SA, the EDPB Chair or the Commission to request23 KB (2,079 words) - 16:07, 2 November 2023
- Article 50 GDPR (category GDPR Articles)exchange of knowledge between them. This way, Article 50 GDPR expands the exhortation under Article 57(1)(g) GDPR that calls for cooperation between EU DPAs17 KB (1,142 words) - 15:41, 28 April 2022
- Tietosuojavaltuutetun toimisto (Finland) - 5618/163/20 (category Article 25(2) GDPR)controller and an order (pursuant to Article 58(2)(d) GDPR) to bring the data processing operations in compliance with the GDPR. Share your comments here! Share34 KB (5,187 words) - 07:49, 13 July 2023
- Tietosuojavaltuutetun toimisto (Finland) - 7099/183/2018 (category Article 7(2) GDPR)subject rights, and hence is not contrary to Article 12(5) GDPR. Consequently, and pursuant to Article 58(2)(d) GDPR, the Finnish DPA ordered the controller34 KB (5,367 words) - 08:14, 18 May 2022
- Article 75 GDPR (category Article 75 GDPR) (section (2) Exclusive Performance of Tasks under the Instructions of the Chair)Protection Regulation (GDPR), Article 75 GDPR, p. 1105 (Oxford University Press 2020). Dix, in Kühling, Buchner, DS-GVO BDSG, Article 75 GDPR, margin number 620 KB (1,347 words) - 14:21, 17 October 2023
- and jurisdiction provisions (Articles 47(1)(b), 47(2)(d), 47(2)(e), 47(2)(g), 47(2)(i), 47(2)(l) GDPR); a duty for the EU BCR member to accept responsibility29 KB (2,823 words) - 15:15, 28 April 2022
- Article 43 GDPR (category GDPR Articles)with the examination procedure referred to in Article 93(2). You can help us fill this section! Article 43 GDPR explains the procedure involved in establishing22 KB (1,634 words) - 14:40, 28 July 2023
- Article 78 GDPR (category GDPR Articles) (section (2) Right to judicial remedy against DPA inactivity)under Articles 58(1)(d) or 58(3)(a) and 58(3)(b) GDPR do not qualify as decisions and cannot be subject to legal actions under Article 78(1) GDPR. A data subject30 KB (3,874 words) - 10:46, 7 December 2023
- Article 42 GDPR (category GDPR Articles) (section (2) Demonstrating safeguards through data protection certification mechanisms, seals or marks)difference between Article 42(1) GDPR and Article 42(2) GDPR is that in the former, the applicant for certification is subject to the GDPR, while in latter27 KB (2,452 words) - 14:26, 28 July 2023
- Article 10 GDPR (category GDPR Articles)accordance with the GDPR’s principles and with appropriate safeguards when the LED is not directly applicable. Article 2(2)(d) GDPR excludes any processing17 KB (1,768 words) - 15:41, 18 March 2024
- Tietosuojavaltuutetun toimisto (Finland) - 4672/161/2022 (category Article 5(1)(a) GDPR)controllers have violated Article 5(1)(a), Article 6(1), Article 13, paragraphs 1 and 2, Article 25, Article 32, paragraphs 1 and 2, and Articles 44 and 4644 KB (6,748 words) - 16:10, 21 March 2023
- exercise on their behalf all rights foreseen under Articles 77 and 78 GDPR and Article 20 of L. 4624/2019. The mandate shall be given with a specific written23 KB (2,039 words) - 08:15, 25 April 2024
- Article 19 GDPR (category GDPR Articles)definition for "processing" in Article 4(2) GDPR). If data is been made public, the applicable provision is Article 17(2) GDPR, provided that all requirements19 KB (1,436 words) - 12:35, 12 May 2023
- (see Article 52 GDPR) and shall be provided with various competencies (Articles 55, 56 GDPR), tasks (Article 57 GDPR) and powers (Article 58 GDPR). For125 KB (16,328 words) - 16:01, 8 March 2024
- Article 63 GDPR (category Article 63 GDPR)to in Article 46(2)(d) GDPR, contractual clauses referred to in Article 46(3)(a) GDPR, or binding corporate rules within the meaning of Article 47 GDPR15 KB (851 words) - 06:55, 29 April 2022
- Article 93 GDPR (category Article 93 GDPR) (section (2) Examination procedure under Article 5 of Regulation (EU) No. 182/2011)organisation), Article 45(5) GDPR (revocation, change of such determinations); Articles 46(2)(c) and (d) GDPR (standard protection clauses); Article 47(3) GDPR (formats17 KB (1,096 words) - 08:19, 19 October 2023
- leeway exists only in cases of Article 64(2) GDPR but not the context of Article 70(2) GDPR. According to Article 70(3) GDPR, the EDPB is obligated to “forward27 KB (3,038 words) - 12:19, 11 October 2023
- deals with processing within the scope of the GDPR. Part 2 deals with processing outside of the scope of the GDPR. Part 3 deals with processing by competent18 KB (2,488 words) - 15:22, 14 December 2021
- Article 92 GDPR (category Article 92 GDPR) (section (2) Delegation of power under Article 12(8) and 43(8) GDPR)objections pursuant to Article 92(5) GDPR. Article 92(5) GDPR imposes a further condition for the delegation of power, in line with Article 290(2)(b) TFEU. A delegated19 KB (1,525 words) - 08:18, 19 October 2023
- Tietosuojavaltuutetun toimisto (Finland) - 6064/163/20 (category Article 25(2) GDPR)reprimand to the controller under Article 58(2)(b) GDPR and an order to the controller pursuant to Article 58(2)(d) GDPR to bring the processing operations49 KB (7,658 words) - 11:36, 26 April 2023
- Garante per la protezione dei dati personali (Italy) - 9925674 (category Article 5(2) GDPR)constituting a breach of Article 12(2) GDPR and Article 12(3) GDPR, as well as Article 15 GDPR, Article 17 GDPR and Article 21(2) GDPR. Thus, the calls carried63 KB (9,986 words) - 12:04, 11 October 2023
- requirements. Although Article 40(5) GDPR mentions that the competent DPA will be determined through the application of Article 55 GDPR, the GDPR does not provide44 KB (5,008 words) - 14:50, 28 July 2023
- Garante per la protezione dei dati personali (Italy) - 9954241 (category Article 5(1)(a) GDPR)controller to be in violation of Article 5(1)(a) GDPR, Article 6 GDPR, Article 9 GDPR, Article 12 GDPR and Article 13 GDPR and started a procedure to adopt77 KB (12,282 words) - 16:43, 12 December 2023
- AEPD (Spain) - PS/00587/2021 (category Article 5(1)(f) GDPR)to violation of article 5.1.f) of the GDPR. VII Classification of the infringement of article 5.1.f) of the GDPR Article 83.5 of the GDPR provides the following:81 KB (12,762 words) - 12:51, 29 November 2022
- EDPB - Binding Decision 5/2022 - 'Whatsapp' (category Article 58 GDPR)After considering the objections in light of Article 4(24) GDPR and the factors outlined in Article 83(2) GDPR the EDPB instructed the DPC to impose an administrative289 KB (33,568 words) - 15:00, 1 February 2023
- AEPD (Spain) - PS/00003/2021 (category Article 12(2) GDPR)pursuant to Article 58(2) GDPR. Moreover, it ordered the controller to bring its processing operations into compliance pursuant to Article 58(2)(d) GDPR. On sharing115 KB (18,312 words) - 11:58, 16 March 2022
- Garante per la protezione dei dati personali (Italy) - 9845156 (category Article 58 GDPR)days (Article 58(2)(d) GDPR) and to, within 20 days of this deadline, communicate the measures taken to comply with the order (Article 58(1)(a) GDPR). Share128 KB (20,856 words) - 12:32, 14 March 2023
- DSB (Austria) - 2021-0.586.257 (redirect from DSB (Austria) - 2021-0.586.257 (D155.027)) (category Article 4(2) GDPR)above-mentioned decision of October 2, 2020 was amenable to a remedy pursuant to Section 68 (2) AVG. D.2. ruling point 2. a) a) General information on the108 KB (17,097 words) - 13:52, 12 May 2023
- Datatilsynet (Norway) - 20/02136 (category Article 3(2) GDPR) (section (i) where measures referred to in Article 58(2) have previously been ordered against the controller or processor concerned with regard to the same subject-matter, compliance with those measures)elements. Infringement of Article 6 and 9 GDPR qualifies for the maximum amount for administrative fines as set out in Article 83(5) GDPR: 20,000,000 € or 4%18 KB (2,375 words) - 16:17, 6 December 2023
- Article 12 GDPR (category GDPR Articles) (section (2) Facilitation of the exercise of rights and identification)are dealt with in Article 12(6) GDPR. It is unclear why Article 12(2) GDPR refers to Articles 15 to 22 GDPR, while Article 11(2) GDPR only refers to Articles76 KB (11,304 words) - 08:37, 4 March 2024
- Article 91 GDPR (category Article 91 GDPR) (section Rules that are comprehensive and in line with the GDPR)Regulation (GDPR), Article 91 GDPR, p. 1263 (Oxford University Press 2020). Tosoni, in Kuner et al., The EU General Data Protection Regulation (GDPR), Article25 KB (2,482 words) - 10:04, 19 March 2024
- with the GDPR (Article 31 GDPR). Direct liability of the representative is limited to the obligations set out in Article 30 and Article 58(1)(a) GDPR. Article25 KB (2,418 words) - 14:11, 24 May 2023
- Datatilsynet (Denmark) - 2020-431-0061 (Helsingor decision no. 1) (category Article 5(2) GDPR)Protection Ordinance Article 5, paragraph Article 5 (2) 1, letter c and letter f., Article 5, paragraph Article 6 (1) (a) Article 32 (1), (1), (33) 1 and48 KB (7,442 words) - 10:24, 12 September 2022
- CJEU - Joined Cases C‑26/22 and C‑64/22 - SCHUFA (category Article 17(1)(d) GDPR)interests under Article 6(1)(f) GDPR. On the erasure obligations under Article 17 GDPR, the CJEU held that under Article 17(1)(d) GDPR SCHUFA will be under15 KB (2,180 words) - 08:23, 13 December 2023
- Datatilsynet (Denmark) - 2020-431-0061 (Helsingor decision no. 3) (category Article 58(2)(f) GDPR)protection regulation's article 5, subsection 2, cf. Article 5, subsection 1, letter a, Article 24, cf. Article 28, subsection 1, Article 35, subsection 1, as117 KB (18,075 words) - 10:19, 12 September 2022
- AEPD (Spain) - PS/00240/2019 (category Article 5(1)(d) GDPR)Therefore, given that Article 6(1), Article 5(1)(a), Article 5(1)(d), Article 5(1)(c), and Article 14 GDPR were infringed in connection to Article 5(1)(b), the602 KB (102,229 words) - 14:21, 13 December 2023
- GDPRhub style guide (section GDPR)in the Member States. Example: Article 6(1)(a) GDPR Example: Not Art. 6 Abs 1 Lit a GDPR or Article 6 GDPR or GDPR Article 6, Sec 1(a) Recitals are also17 KB (2,510 words) - 13:56, 24 April 2023
- CNIL (France) - SAN-2020-012 (category Article 4(7) GDPR)the fine, the criteria specified in the same article 83. 111. Article 83 of the GDPR, as referred to in Article 20, paragraph III, of the Data Protection93 KB (14,936 words) - 17:09, 6 December 2023
- CJEU - C-40/17 - Fashion ID (category Article 80 GDPR)arguing that it wasn’t a controller within the definition set out under Article 2(d) Directive 95/46 and that NRW did not have legal standing to bring a class6 KB (492 words) - 13:09, 1 June 2023
- UODO (Poland) - ZSPR.421.2.2019 (category Article 58(2)(i) GDPR)relation to Article 5(1)(a) and (f), Article 5(2), Article 6(1), Article 7(1), Article 24(1), Article 25(1), Article 32(1)(b), (c), (d), (d), (e) and (f)71 KB (11,304 words) - 10:01, 17 November 2023
- Garante per la protezione dei dati personali (Italy) - 9870832 (category Article 5 GDPR)imposed on OpenAI a temporary limitation of processing pursuant to Article 58(2)(f) GDPR. Such limitation concerns all processing operations involving data14 KB (2,049 words) - 07:46, 1 August 2023
- AEPD (Spain) - EXP202206626 (category Article 5(1)(c) GDPR)particular case". According to the provisions of article 83.2 of the GDPR, the measure provided for in article 58.2 d) of the aforementioned Regulation is compatible35 KB (5,475 words) - 13:21, 13 December 2023