Search results

been provided, where: (a) the processing is based on consent pursuant to point (a) of Article 6(1) or point (a) of Article 9(2) or on a contract pursuant to

provisions Article 4.11: Consent (definition) Article 4.12: Violation of personal data (definition) Article 5.2: Principle of accountability Article 6.1.a: Legal

provided in article 46.1 of the aforementioned Law. 940-0419 Mar Spain Martí Director of the Spanish Agency for Data Protection C / Jorge Juan, 6 www.aepd

consented to processing of his or her data (Art 7 (1) GDPR). This is equally true under Article 7(a) of the Directive 95/46, which required that the data

processing still needs to rely on a legal basis from Article 6(1) GDPR and comply with the principles enshrined in Article 5 GDPR. Additionally, the processing

Supervision: Article 6(1)(f), legitimate interest. For the special category personal data: About diagnosis: Article 6(1)(a), cf. Article 9(2)(a), consent

The heading of Article 6(1) and the wording “has given” in Article 6(1)(a) support this interpretation. It follows logically from Article 6 and Recital 40

this case under Article 6(1)(a) or 6(1)(c)? If Article 6(1)(a) applies, do the requirements for parental consent under Article 8 GDPR also apply? Did the

category personal data and thus requires a legal ground for processing as per Article 9(2) GDPR, in addition to Article 6(1). However, the Board were split in

with Article 57(1)(a) and (h) of the RGPD. Moreover, the restricted formation notes that Article 80 of the EPMR provides for the possibility for a person

against a controller (as defined under Article 4(7) GDPR) and a processor (as defined under Article 4(8) GDPR). As noted above, Article 79 GDPR imposes

investigated are not compliant with the consent requirements under Article 6(1)(a) GDPR when placing cookies. Following its investigation of 175 websites

personal data is consent (Article 6(1)(a) GDPR) given while registering to the newsletter. Article 8(1) GDPR establishes the age at which a minor can legally give

provisions of Article 5(1)(a), 5(1)(f), and Article 6(1)(a) GDPR) and €50 (for violating Article 58(1)(a), 58(1)(e) and Article 83(5)(e) GDPR). Thus, the

The Commissioner fined a doctor € 14,000 for publishing sensitive patient data on Instagram. Patient filed a complaint with the Commissioner because her

without a basis from Article 6. Therefore, the AEPD considered that there has been an infringement of Article 6.1, entailing a fine of €2000. Article 14 refers

DPA found a violation of the principle of lawfulness, fairness and transparency established in Article 5(1)(a) GDPR. Moreover, the DPA found a violation

contrary to GDPR, specifically, articles Articles 5(1)(a) and 6(1)(a) GDPR. Though the Hospital acknowledged that the form was not adapted to the new GDPR rules

as per Article 6(1)(f) GDPR. The DPA found that the analysis of large amounts of data to create customer profiles could not be based on Article 6(1)(f).

The DPA therefore held that the controller violated Article 6(1)(a) (jo Article 4(11) and Article 7(1)). Regarding the pre-ticked boxes for third-party cookies