Search results
From GDPRhub
- Article 6 GDPR (section (c) Nature of personal data)of the personal data, in particular whether special categories of personal data are processed, pursuant to Article 9, or whether personal data related108 KB (17,005 words) - 15:39, 18 March 2024
- Article 15 GDPR (section Passive ex-post information about the personal data of the specific data subject)special categories of personal data (Article 9 GDPR); personal data relating to criminal convictions and offences (Article 10 GDPR); data knowingly and actively73 KB (9,896 words) - 15:46, 18 March 2024
- IP - 07120-1/2020/25 (category Article 4(5) GDPR)is no longer possible. Encrypted personal data are pseudonymised personal data and thus still personal data (see Article 4, point 5 of the General Regulation)24 KB (3,577 words) - 15:31, 14 April 2021
- Article 13 GDPR (section (1) Information the controller shall provide at the time personal data is obtained)Article 13: Information to be provided where personal data are collected from the data subject 1. Where personal data relating to a data subject are collected71 KB (9,532 words) - 13:30, 6 March 2024
- Article 32 GDPR (section (c) Ability to restore availability and access to personal data in a timely manner)of data protection by design and data protection by default. Such measures could consist, inter alia, of minimising the processing of personal data, pseudonymising41 KB (5,197 words) - 12:17, 17 April 2024
- HDPA (Greece) (section Personal)the Greek Data Protection Act 2019, the ePrivacy Directive implementation law and other provisions regarding the protection of personal data. It was first23 KB (2,039 words) - 08:15, 25 April 2024
- Article 45 GDPR (section Article 45 and Schrems II)independent data protection supervision and should provide for cooperation mechanisms with the Member States' data protection authorities, and the data subjects43 KB (5,641 words) - 14:58, 28 April 2022
- Article 17 GDPR (section Erasure of personal data)processing the personal data of the data subject's request. Article 17 confers upon the data subject the right to have their personal data erased, however61 KB (8,488 words) - 15:47, 18 March 2024
- Article 70 GDPR (category Article 70 GDPR)necessary requirements to ensure the protection of personal data of the data subjects concerned referred to in Article 47; (j) issue guidelines, recommendations27 KB (3,038 words) - 12:19, 11 October 2023
- exist before. Article 8 introduces a new fundamental right to data protection, which reads as follows: Article 8 Protection of personal data 1. Everyone48 KB (5,978 words) - 15:57, 1 February 2024
- how the personal data is processed; You have entrusted the processing of personal data to an external organisation to process the personal data on your37 KB (3,915 words) - 12:49, 24 May 2023
- Example: The Austrian Data Protection Act ('Datenschutzgesetz') regulates the use of personal data by journalists in § 9 Data Protection Act, as made possible37 KB (4,635 words) - 13:29, 24 October 2023
- Article 4 GDPR (section (1) Personal data)disclosure of, or access to, personal data transmitted, stored or otherwise processed; 13. ‘genetic data’ means personal data relating to the inherited or125 KB (16,328 words) - 16:01, 8 March 2024
- of the controller, return or delete the personal data, unless there is a requirement to store the personal data under Union or Member State law to which13 KB (674 words) - 13:15, 2 June 2023
- to carry out a data protection impact assessment from Article 35 GDPR or the obligation to designate a data protection officer from Article 37 GDPR. The17 KB (1,768 words) - 15:41, 18 March 2024
- related to the protection of personal data in the Union, including advice regarding proposed amendments to the GDPR (pursuant to Article 70(1)(b) GDPR)18 KB (1,327 words) - 12:36, 14 December 2023
- Article 93 GDPR (category Article 93 GDPR) (section (2) Examination procedure under Article 5 of Regulation (EU) No. 182/2011)unlike delegated acts made under Article 92 GDPR. Article 93(2) GDPR explicitly provides for the application of Article 5 of Regulation (EU) No 182/201117 KB (1,096 words) - 08:19, 19 October 2023
- Article 66 GDPR (category Article 66 GDPR)if the SA is 'concerned' by the processing of personal data under Article 4(22)(6) or (c) (i.e. when data subjects are substantially affected or a complaint20 KB (1,590 words) - 16:11, 2 November 2023
- Article 76 GDPR (category Article 76 GDPR)General Data Protection Regulation (GDPR), Article 76 GDPR, p. 1111-1112 (Oxford University Press 2020). Docksey, in Kuner et al., The EU General Data Protection15 KB (787 words) - 08:17, 19 October 2023
- Article 92 GDPR (category Article 92 GDPR) (section (2) Delegation of power under Article 12(8) and 43(8) GDPR)and in particular their right to the protection of personal data and to ensure the free movement of personal data within the Union, the power to adopt19 KB (1,525 words) - 08:18, 19 October 2023
- Austrian Data Protection Act (Datenschutzgesetz - DSG) sets a penalty of €50,000 for, inter alia, (1) intentionally obtaining illegal access to personal data19 KB (1,477 words) - 14:12, 7 November 2023
- accordance with Article 42(5); (g) to adopt standard data protection clauses referred to in Article 28(8) and in point (d) of Article 46(2); (h) to authorise46 KB (5,825 words) - 11:12, 7 November 2023
- Article 57 GDPR (section (k) Maintain a list of processing operations requiring a data protection impact assessment)commentary to Article 60 GDPR, Article 61 GDPR, Article 62 GDPR, Article 63 GDPR, Article 64 GDPR, Article 65 GDPR, Article 66 GDPR and Article 56 GDPR. The60 KB (7,796 words) - 20:12, 1 April 2024
- identify the purpose of personal data processing for scientific research purposes at the time of data collection. Therefore, data subjects should be allowed31 KB (3,489 words) - 16:00, 8 March 2024
- Article 77 GDPR (section In case there is a processing of personal data which infringes the Regulation)if the data subject considers that the processing of personal data relating to them infringes the GDPR. The right to file a complaint under Article 77(1)33 KB (3,641 words) - 09:51, 19 March 2024
- Article 71 GDPR (category Article 71 GDPR)mechanisms and data protection seals and marks should be encouraged, allowing data subjects to quickly assess the level of data protection of relevant products15 KB (1,196 words) - 08:15, 19 October 2023
- processing, on a large scale, of special categories of personal data or the processing of personal data relating to criminal convictions and offences, and22 KB (2,042 words) - 14:29, 20 November 2023
- dispute resolution mechanism under Article 65 GDPR in connection with Article 63 GDPR is triggered (Article 60 (4) GDPR). Article 60(2) GDPR clarifies that also35 KB (4,017 words) - 16:04, 18 March 2024
- persons in relation to the processing of their personal data and to facilitate the free flow of personal data within the internal market. For that purpose24 KB (2,181 words) - 11:46, 15 January 2024
- Article 68 GDPR (category Article 68 GDPR)Article 68 - European Data Protection Board 1. The European Data Protection Board (the ‘Board’) is hereby established as a body of the Union and shall20 KB (1,632 words) - 10:01, 11 October 2023
- this article. → You can find all related decisions in Category:Article 48 GDPR Kuner, in Kuner, Bygrave, Docksey, The EU General Data Protection Regulation14 KB (716 words) - 15:19, 28 April 2022
- period for which the personal data are processed, the recipients of the personal data, the logic involved in any automatic personal data processing and, at76 KB (11,304 words) - 08:37, 4 March 2024
- Article 67 GDPR (category Article 67 GDPR)referred to in Article 64. Those implementing acts shall be adopted in accordance with the examination procedure referred to in Article 93(2). Recital15 KB (810 words) - 16:13, 2 November 2023
- Article 73 GDPR (category Article 73 GDPR)should replace the Working Party on the Protection of Individuals with Regard to the Processing of Personal Data established by Directive 95/46/EC. It should19 KB (1,530 words) - 14:23, 12 October 2023
- under Article 30(1) GDPR, documenting personal data breaches under Article 33(5) GDPR or performing a data protection impact assessment under Article 35 GDPR)30 KB (3,458 words) - 10:31, 25 April 2024
- Article 9 GDPR (section (e) Related to personal data which are manifestly made public by the data subject)processing of genetic data, biometric data or data concerning health. Article 9(1) GDPR provides a list of special categories of personal data whose processing44 KB (5,905 words) - 14:00, 24 October 2023
- mechanisms and data protection seals and marks should be encouraged, allowing data subjects to quickly assess the level of data protection of relevant products27 KB (2,452 words) - 14:26, 28 July 2023
- not affected by Article 11 GDPR. Article 11 GDPR applies when “personal data do not or do no longer require the identification of a data subject”. One could20 KB (1,854 words) - 16:32, 8 March 2024
- Article 27 GDPR (section (a) Processing Which is Occasional and Does Not Include Data in the Sense of Articles 9 and 10 GDPR)categories of data as referred to in Article 9(1) or processing of personal data relating to criminal convictions and offences referred to in Article 10" on a25 KB (2,418 words) - 14:11, 24 May 2023
- restrictions. Article 16 gives data subjects the right to have incomplete personal data completed. Whether data is incomplete within the meaning of Article 16 GDPR23 KB (2,489 words) - 23:24, 6 March 2024
- general data protection principles, in particular purpose limitation, data minimisation, limited storage periods, data quality, data protection by design29 KB (2,823 words) - 15:15, 28 April 2022
- Fundamental Rights The processing of personal data should be designed to serve mankind. The right to the protection of personal data is not an absolute right; it25 KB (2,482 words) - 10:04, 19 March 2024
- Article 39 - Tasks of the data protection officer 1. The data protection officer shall have at least the following tasks: (a) to inform and advise the23 KB (2,165 words) - 15:10, 27 July 2023
- Article 2 GDPR (section Personal data)the personal data of deceased persons. Member States may provide for rules regarding the processing of personal data of deceased persons. Article 2 GDPR34 KB (4,652 words) - 12:07, 12 November 2023
- Article 72 GDPR (category Article 72 GDPR)the processing of personal data, such as the legal grounds for processing or data protection principles. The European Data Protection Board established22 KB (2,266 words) - 08:26, 17 October 2023
- (iii) has been fined under Article 83 GDPR or (iv) is subject to a penalty under Article 84 GDPR. If a data subject’s personal data is otherwise affected by30 KB (3,874 words) - 10:46, 7 December 2023
- Article 34 - Communication of a personal data breach to the data subject 1. When the personal data breach is likely to result in a high risk to the rights37 KB (3,962 words) - 15:20, 16 June 2023
- security measures, compliance with data retention requirements, data location, data transfers, data access, recipients of data, use of sub-processors, and other72 KB (9,140 words) - 13:12, 2 June 2023
- under Article 30 GDPR, to carry out a data protection impact assessment under Article 35 GDPR, or to designate a data protection officer under Article 3731 KB (3,550 words) - 11:11, 29 November 2023
- where data subjects might be deprived of their rights and freedoms or prevented from exercising control over their personal data; where personal data are33 KB (4,215 words) - 09:57, 19 March 2024
- Article 62 GDPR (category Article 62 GDPR)need to act under Article 66(1) shall be presumed to be met and require an opinion or an urgent binding decision from the Board pursuant to Article 66(2)22 KB (1,915 words) - 13:46, 15 January 2024
- element of a data subject's fundamental right to data protection. Article 51 GDPR is closely connected to Article 4(21) (definition of SA), Article 52 (independence)27 KB (2,604 words) - 14:24, 16 January 2024
- Datenschutzrecht, Article 53 GDPR, margin number 11 (Nomos 2019). Hijmans, in Kuner, Bygrave, Docksey, The EU General Data Protection Regulation (GDPR), Article 53 GDPR29 KB (2,894 words) - 23:06, 1 April 2024
- European Data Protection Supervisor when they stated that “the Data Protection Officer is fundamental in insuring the respect of data protection principles43 KB (4,904 words) - 12:59, 21 July 2023
- protection, such as on special categories of data (Article 9 GDPR) or human resources data (Article 88 GDPR). It is not evident which national law is applicable35 KB (3,971 words) - 21:34, 1 April 2024
- General Data Protection Regulation (GDPR), Article 65 GDPR, p. 1023 (Oxford University Press 2020). EDPB, Rules of Procedure, 8 October 2020, Article 21.233 KB (4,185 words) - 16:09, 2 November 2023
- freedoms of data subjects pursuant to this Regulation; (d) where applicable, the contact details of the data protection officer; (e) the data protection impact31 KB (3,646 words) - 08:51, 21 July 2023
- consistency” in data protection law. This is particularly relevant given the fact that Member States may give effect to EU data protection law in ways which30 KB (2,720 words) - 14:02, 28 July 2023
- Article 81 GDPR (section Scope of Article 81 GDPR)proceedings. Article 81 GDPR regulates the suspension of judicial proceedings in multiple Member States in the context of data protection. The Article addresses27 KB (2,619 words) - 14:52, 16 November 2023
- compliance for the new data controller. A data portability request only applies to personal data concerning the data subject. Pseudonymous data is within the scope40 KB (5,349 words) - 07:05, 1 June 2023
- Article 33 - Notification of a personal data breach to the supervisory authority 1. In the case of a personal data breach, the controller shall without54 KB (6,536 words) - 08:22, 16 June 2023
- Article 52 GDPR (section Shall act)of independence is also referred to in Article 4(12) GDPR (definition of SA), Article 45(2)(b) GDPR (personal data transfers to a third country or an international47 KB (5,594 words) - 22:45, 1 April 2024
- processing of personal data is carried out at that location. The presence and use of technical means and technologies for processing personal data or processing55 KB (7,446 words) - 22:28, 1 April 2024
- Article 89 GDPR (category Article 89 GDPR)of personal data in those areas. Under Article 4(5) GDPR, pseudonymisation means the processing of personal data in such a manner that the personal data29 KB (3,695 words) - 13:44, 21 March 2024
- (c) the collection of personal data; (d) the pseudonymisation of personal data; (e) the information provided to the public and to data subjects; (f) the exercise44 KB (5,008 words) - 14:50, 28 July 2023
- rectification or erasure of personal data or restriction of processing (Article 19 GDPR), data portability (Article 20 GDPR), object (Article 21 GDPR), and refusal44 KB (4,896 words) - 06:25, 16 June 2023
- establishment of SAs, please refer to Article 51(1) GDPR and Article 52 GDPR in this Commentary. Article 54(1)(b) GDPR echoes Article 53(2) GDPR, which outlines the34 KB (3,649 words) - 13:19, 30 October 2023
- importance of the special categories of personal data within the meaning of Article 9 GDPR. The special protection of Article 10 GDPR should also be taken into55 KB (7,622 words) - 14:04, 7 November 2023
- CJEU - C-673/17 - Planet49 (category Article 6 GDPR)directive establishes a difference between the collection of “personal data” and other data. The Court referenced the earlier opinion of the AG, noting that6 KB (893 words) - 15:22, 24 March 2022
- DSB (Austria) - 2021-0.586.257 (category Article 4(1) GDPR) (section Website visit and data transfer to Google LLC)agreement), the following types of Personal Data may constitute Customer Personal Data. Processor Services | Types of Personal Data | ------------------------108 KB (17,097 words) - 13:52, 12 May 2023
- LG Köln - 33 O 376/22 (category Article 49(1)(a) GDPR)constitute personal data for both the defendant and Google LLC as data controllers. Dynamic IP addresses constitute personal data if the data controller66 KB (9,990 words) - 12:30, 29 January 2024
- legislation. Norway passed the Personal Data Registers Act of 1978, which was in force until the enactment of the Personal Data Act of 2000, which built on Directive8 KB (1,064 words) - 12:53, 23 June 2023
- OVG Sachsen-Anhalt - 1 M 49/23 (category Article 53(1) GDPR)the protection of natural persons in processing of personal data, on the free movement of data and on the repeal of Directive 95/46/EC (General Data Protection14 KB (1,999 words) - 14:20, 18 July 2023
- APD/GBA (Belgium) - 37/2020 (category Article 17 GDPR)free movement of data). Data Protection), hereinafter DPMR ; Having regard to the law of 3 December 2017 establishing the Data Protection Authority, hereinafter131 KB (22,429 words) - 16:57, 12 December 2023
- this section! The Slovenian Constitution of 1991 guarantees the protection of personal data at the constitutional level and within the framework of guaranteed4 KB (391 words) - 09:57, 17 May 2021
- Recital 4: The processing of personal data should be designed to serve mankind. The right to the protection of personal data is not an absolute right; it182 KB (24,065 words) - 13:40, 9 July 2021
- period for which the personal data are processed, the recipients of the personal data, the logic involved in any automatic personal data processing and, at31 KB (4,768 words) - 06:24, 16 June 2023
- birthday of data protection law in Germany is 30 September 1970, the date on which the Hessian state parliament passed the Data Protection Act. On a federal18 KB (1,831 words) - 13:49, 3 November 2022
- CNIL (France) - SAN-2019-010 (category Article 49 GDPR)on the protection of personal data and on the free movement of such data; Having regard to Law No. 78-17 of 6 January 1978 on Data Processing, Data Files62 KB (10,001 words) - 17:09, 6 December 2023
- BVwG - W245 2252208-1/36E and W245 2252221-1/30E (category Article 44 GDPR)Articles 44 to 49 GDPR, data transfers from the EU/EEA under the data protection clauses. In addition, give the BF2 EU/EEA personal data to the US government158 KB (26,392 words) - 08:25, 7 June 2023
- IMY (Sweden) - DI-2020-11373 (category Article 44 GDPR)not base the transfer of data on standardized data protection regulations according to article 46.2 c of the data protection regulation if the recipient113 KB (12,773 words) - 15:20, 6 December 2023
- Datatilsynet (Denmark) - 2020-431-0061 (Helsingor decision no. 1) (category Article 5(1)(c) GDPR)been a breach of personal data security, see Article 4 (12) of the Data Protection Regulation. 4.6 Article 32 of the Data Protection Regulation It follows48 KB (7,442 words) - 10:24, 12 September 2022
- APDCAT (Catalonia) - PS 49/2019 (category Article 5(1)(a) GDPR)December, on the Protection of Personal Data and guarantee of digital rights (hereinafter, LOPDGDD), as follows: “E) The processing of personal data in the categories38 KB (5,760 words) - 08:26, 8 September 2021
- OLG Linz - 6R49/19x (category Article 2(1) GDPR)German Data Protection Act (DSG) as well as Sec. 78 of the Copyright Act. The published pictures were sensitive data concerning the most personal sphere33 KB (5,113 words) - 09:50, 14 December 2023
- CJEU - C-77/21 - Digi (category Article 5(1)(b) GDPR)5 According to Article 5 of the aforementioned regulation entitled “Principles for the handling of personal data”: “(1) The personal data: a) shall49 KB (7,800 words) - 09:22, 5 January 2024
- AEPD (Spain) - E/10529/2021 (category Article 45 GDPR)authorities' access to data personal data, as well as the application of said legislation, the rules for the protection of data, professional standards44 KB (6,642 words) - 10:34, 13 December 2023
- Rb. Gelderland - AWB - 18 3073 (category Article 6 GDPR)claim for compensation as referred to in Article 49, first and second paragraphs of the Personal Data Protection Act (Wbp). By decision of 13 March 2018, the10 KB (1,424 words) - 12:09, 9 May 2022
- UODO (Poland) - ZSPU.421.3.2019 (category Article 5(1)(a) GDPR)of the Act on the Protection of Personal Data (Journal of Laws of 2010, No. 183, item 659, as amended), the Act on the Protection of Personal Data (Journal58 KB (9,357 words) - 10:02, 17 November 2023
- old German Data Protection Act (BDSG a.F.). However, it ceased to apply with the introduction of the GDPR and the new German Data Protection Act (BDSG n.F51 KB (8,215 words) - 09:55, 13 May 2022
- IMY (Sweden) - DI-2020-11397 (category Article 44 GDPR)considered whether the data processed through Google analytics tool constitutes personal data and found that the data does constitute personal data as cookies containing121 KB (13,722 words) - 15:16, 5 July 2023
- CNIL (France) - SAN-2022-025 (category Article 4(11) GDPR)violate Article 82 of the Data Protection Act? The DPA explained that Article 82 of the Data Protection Act required the provider to ask consent of data subjects82 KB (13,463 words) - 17:03, 6 December 2023
- Garante per la protezione dei dati personali (Italy) - 9542155 (category Article 5(2) GDPR)concerning the protection of individuals with regard to the processing of personal data, as well as the free circulation of such data and which repeals26 KB (4,162 words) - 15:54, 6 December 2023
- IMY (Sweden) - DI-2020-11370 (category Article 44 GDPR)not base the transfer of data on standardized data protection regulations according to article 46.2 c of the data protection regulation if the recipient131 KB (14,752 words) - 08:36, 5 July 2023
- APD/GBA (Belgium) - 31/2020 (category Article 5(1)(c) GDPR)or erase the personal data or to restrict the personal data relating to him/her (c) where processing is based on Article 6(1)(a) or Article 9(2)(a), that48 KB (7,926 words) - 16:56, 12 December 2023
- Datatilsynet (Norway) - 21/03530 (category Article 6(1)(b) GDPR)requirements The protection of personal data and privacy are fundamental rights enshrined in Article 8 of the European Convention on Human Rights, Article 102 of99 KB (14,431 words) - 16:20, 6 December 2023
- VGH Baden-Württemberg - 1 S 397/19 (category Article 5(1)(d) GDPR)regard to the processing of personal data, on the free movement of such data and repealing Directive 95/46/EC (Basic Data Protection Regulation, OJ L 119 of112 KB (19,310 words) - 08:08, 23 June 2022
- CNIL (France) - SAN-2020-012 (category Article 4(7) GDPR)the requirements set in Article 82 of the Data Protection Act is set out in Article 3, paragraph I, of the Data Protection Act which provides: without93 KB (14,936 words) - 17:09, 6 December 2023
- IMY (Sweden) - DI-2020-11368 (category Article 44 GDPR)Google processes personal data of the data controller (i.e. 1 regarding the processing of personal data and about the free flow of such data and about the115 KB (12,842 words) - 08:38, 5 July 2023
- Tietosuojavaltuutetun toimisto (Finland) - 918/154/2019 (category Article 17(1) GDPR)and the Data Protection Act (1050/2018). When deciding the matter, the Deputy Data Protection Commissioner also takes into account the European Data Protection26 KB (4,072 words) - 12:18, 27 March 2024
- CNIL (France) - SAN-2019-005 (category Article 5(1)(e) GDPR)unprotected URL address to share documents containing personal data violates Article 32 GDPR. Retaining personal data of an applicant for a lease after another applicant41 KB (6,558 words) - 17:09, 6 December 2023
- Norges Høyesterett - 2021-2403-A (category Article 4(11) GDPR)EMKN A8 | The Health Personnel Act (1999) | The Personal Data Act (2000) | Disputes Act (2005) §20-2 | The Personal Data Act (2018) §1, GDPR A4, GDPR A5 (1)46 KB (7,024 words) - 06:18, 6 March 2022
- Datatilsynet (Denmark) - 2020-431-0061 (Helsingor decision no. 2) (category Article 5(1)(a) GDPR)2021, the Danish Data Protection Authority made a decision regarding the breach of personal data security. The Danish Data Protection Authority found that75 KB (11,733 words) - 16:33, 21 August 2022
- EFTA Court - Joined Cases E-11/19 and E-12/19 (category Article 57(3) GDPR)2018 on Data Protection (Datenschutzgesetz, LR 235.1) (“the Data Protection Act”) implements the GDPR in the Liechtenstein legal order. 18 Article 15 of59 KB (8,242 words) - 10:47, 17 March 2021
- CNIL (France) - Google Analytics (no case number) (category Article 4(7) GDPR) (section Personal Data)to this transfer of data, the company compromises the level of protection of personal data of data subjects, as guaranteed in Article 44 of the GDPR. Consequently40 KB (5,904 words) - 16:51, 24 February 2022
- APD/GBA (Belgium) - 36/2021 (category Article 5(1) GDPR)use of Article 221, § 2, Data Protection Act the possibility that Article 83.7 GDPR offers the member states. Article 221, § 2, Data Protection Act determines:62 KB (9,417 words) - 16:57, 12 December 2023
- CJEU - T‑200/21 JS v European Data Protection Supervisor (EDPS) (category Article 17 GDPR)HR-related) data concerning him was being processed, to provide a copy of his personal data and to restrict the processing of his personal data, while objecting61 KB (9,971 words) - 14:28, 4 January 2024
- CNIL (France) - SAN-2020-014 (category Article 9 GDPR)relating to the protection of personal data and the free movement of such data; Considering the law n o 78-17 of January 6, 1978 relating to data processing26 KB (4,050 words) - 17:10, 6 December 2023
- Tietosuojavaltuutetun toimisto (Finland) - TSV/26/2020 (category Article 5(1)(e) GDPR)responsibility for the protection of personal data to the data subject. The storage of personal data cannot be justified by the fact that the data subject may later77 KB (12,352 words) - 07:20, 23 April 2024
- Tietosuojavaltuutetun toimisto (Finland) - 3831/161/21 (category Article 5(1)(e) GDPR)movements. Purchase data may also indirectly reveal personal data belonging to the special categories of personal data within the meaning of Article 9 GDPR. For61 KB (9,477 words) - 13:38, 12 January 2024
- Tietosuojavaltuutetun toimisto (Finland) - 1198/161/2022 (category Article 9(2)(a) GDPR)the legal protection of data controllers are stipulated in the National Data Protection Act. The disciplinary board consists of a data protection commissioner13 KB (1,847 words) - 15:52, 11 December 2023
- APD/GBA (Belgium) - 21/2022 (category Article 5(1)(f) GDPR) (section Accountability (Article 24 GDPR), data protection by design and by default (Article 25 GDPR), integrity and confidentiality (Article 5(1)(f) GDPR), as well as security of processing (Article 32 GDPR))special categories of personal data (Article 9 GDPR). The respondent argued that the TC String does not contain any personal data, that it does not constitute429 KB (58,279 words) - 09:12, 2 November 2022
- AEPD (Spain) - EXP202202164 (category Article 5(1) GDPR)website where data is collected personal data through multiple forms, only one informs about the treatment of data, violating data protection regulations29 KB (4,482 words) - 14:06, 5 March 2024
- LG Berlin - (526 OWi LG) 212 Js-OWi 1/20 (1/20), 526 OWiG LG 1/20 (category Article 83(4) GDPR)by the last amendment of the Federal Data Protection Act, by the second Act on the Adaptation of Data Protection Law of 20 November 2019. November 201936 KB (5,810 words) - 13:09, 21 January 2022
- AEPD (Spain) - PS/00113/2019 (category Article 5(1)(a) GDPR)Agency for Data Protection sanction with APERCIBIMIENTO to BBB, for an infringement of article 5.1.a) of the RGPD, as indicated in article 83.5 a) and23 KB (3,836 words) - 14:01, 13 December 2023
- AEPD (Spain) - PS/00023/2020 (category Article 5(1)(c) GDPR)Spanish Data Protection Agency and on the basis of the following FACTS FIRST: On October 8, 2019, he joined this Spanish Agency Data Protection Department21 KB (3,298 words) - 13:46, 13 December 2023
- IP - 07121-1/2020/1159 (category Article 6 GDPR)paragraph of Article 49 of the Personal Data Protection Act (Official Gazette of the Republic of Slovenia, No. 94/07-UPB1, hereinafter ZVOP-1) and Article 2 of7 KB (1,028 words) - 11:05, 13 January 2021
- DSB (Austria) - D123.921/0005-DSB/2019 (category Article 1(2) GDPR)specifically processed data and a copy of this data was expressly refused. The data subject lodged a complaint with the data protection authority. The complainant42 KB (6,592 words) - 13:58, 12 May 2023
- AEPD (Spain) - PS/00034/2020 (category Article 5(1)(f) GDPR)made by the Spanish Data Protection Agency. THIRD: On 10 March 2020, the Director of the Spanish Data Protection Agency Data Protection agreed to initiate18 KB (2,727 words) - 13:50, 13 December 2023
- does not apply. Data Protection 23. The claimant relies on Article 82, as supplemented by s.168 of the Data Protection Act 2018. Article 82 of the UK-GDPR61 KB (8,986 words) - 08:40, 22 February 2022
- AEPD (Spain) - PS/00151/2020 (category Article 5(1)(c) GDPR)December, Protection of Personal Data and guarantee of digital rights (hereinafter, LOPDGDD), the Director of the Spanish Agency for Data Protection is competent28 KB (4,525 words) - 14:06, 13 December 2023
- IP - 0712-1/2020/1408 (category Article 15 GDPR)paragraph of Article 49 of the Personal Data Protection Act (Official Gazette of the Republic of Slovenia, No. 94/07-UPB1, hereinafter: ZVOP-1) and Article 2 of10 KB (1,575 words) - 13:37, 10 August 2021
- APD/GBA (Belgium) - 22/2020 (category Article 5(1)(f) GDPR)accordance with Article 5.2 of the Data Protection Act, also demonstrated that it had taken such measures at the request of the data protection authority. More35 KB (5,526 words) - 16:56, 12 December 2023
- OLG Köln - 15 U 89/19 (category Article 17(3) GDPR)under Article 17.1 lit. d of the Data Protection Act does not require any prior objection and - as Article 17.1 lit. c of the Data Protection Act shows143 KB (24,273 words) - 15:59, 10 March 2022
- Tietosuojavaltuutetun toimisto (Finland) - 4359/163/2018 (category Article 5(1)(e) GDPR)The Data Protection Authority of Finland instructed a debt collection agency to delete personal data pursuant to the request of the data subject. According15 KB (2,249 words) - 13:05, 3 March 2024
- IP - 7121-1/2020/369 (category Article 6 GDPR)of Article 49 of the Personal Data Protection Act (Official Gazette RS, No. 94/07, officially consolidated text, hereinafter ZVOP-1), and 2 Article 4310 KB (1,406 words) - 15:25, 17 March 2022
- APD/GBA (Belgium) - 81/2020 (category Article 5(1)(c) GDPR)April 2016 on data protection at personal nature and the free movement of such data, and repealing Directive 95/46 / EC (general data protection regulation)127 KB (21,484 words) - 17:01, 12 December 2023
- IP - 07121-1/2020/387 (category Article 9 GDPR)first paragraph of Article 49 of the Personal Data Protection Act (Official Gazette RS, No. 94/07-UPB1, hereinafter ZVOP- 1) and Article 2 of the Information12 KB (1,812 words) - 15:11, 17 March 2022
- HDPA (Greece) - 7/2023 (category Article 15 GDPR)of personal data (definition) Article 4.13 : Genetic data (definition) Article 4.14 : Biometric data (definition) Article 4.15 : Data concerning health9 KB (1,251 words) - 12:15, 8 May 2023
- CNIL (France) - SAN-2020-009 (category Article 5(1)(a) GDPR) (section On the violation of the obligation to fairly process personal data)requirements of Article 13 of the Regulation. C. On the breach relating to cookies 69. Article 82 of the Data Protection Act (Article 32.II in a wording48 KB (7,404 words) - 17:09, 6 December 2023
- HDPA (Greece) - 51/2021 (category Article 22 GDPR)security Article 33: Notification of personal data breach Article 34: Notification of personal data breach Article 35: Impact assessment on data protection9 KB (1,168 words) - 15:30, 6 December 2023
- HDPA (Greece) - 44/2019 (category Article 5(1) GDPR)corporate e-mails recommend personal data, it was not proved that in them there was personal data, that no attempted access to personal (private) electronic accounts127 KB (21,184 words) - 15:39, 6 December 2023
- APD/GBA (Belgium) - 12/2019 (category Article 4(11) GDPR)the data collected with them. The legal predecessor of the EDPB (Article 29 Data Protection Working Party, further: Working Party on Data Protection) has107 KB (17,697 words) - 16:52, 12 December 2023
- OLG Köln - 15 U 126/19 (category Article 17(1)(d) GDPR)2018 under the applicability of the Federal Data Protection Act on Section 29 of the Federal Data Protection Act (old version) and has not yet been able to121 KB (20,412 words) - 15:58, 10 March 2022
- EDPB - Binding Decision 5/2022 - 'Whatsapp' (category Article 4 GDPR)basis for the processing of any personal data they undertook. Article 6(1) GDPR detailed the lawful bases upon which such data can be processed. The company289 KB (33,568 words) - 15:00, 1 February 2023
- APD/GBA (Belgium) - 34/2020 (category Article 5(1)(b) GDPR)appointment of an official for data protection (Article 37 GDPR) and the position of the official for data protection (Article 38 GDPR); • compliance with82 KB (13,250 words) - 16:57, 12 December 2023
- ICO - Monetary Penalty on Ticketmaster UK Limited (category Article 4(2) GDPR)processing personal data, including: 1. Personal data shall be: ... (f) processed in a manner that ensures appropriate security of the personal protection damage130 KB (21,195 words) - 13:52, 25 April 2021
- AEPD (Spain) - EXP202204806 (category Article 5(1)(b) GDPR)nº 1). SECOND: In accordance with article 65.4 of Organic Law 3/2018, of 5 December, of Protection of Personal Data and guarantee of digital rights (in15 KB (2,313 words) - 10:35, 13 December 2023
- Tietosuojavaltuutetun toimisto (Finland) - 6722/154/2018 (category Article 17(1)(c) GDPR)and 8 (1) (8) of the Personal Data Act). Furthermore, in the Interpretation Guide of the Article 29 Working Party, personal data processed in the context19 KB (3,000 words) - 13:07, 3 March 2024
- AEPD (Spain) - E/07449/2019 (category Article 13 GDPR)provided when the personal data is obtained from the interested party.1When personal data are obtained from a data subject, the data controller shall,11 KB (1,680 words) - 13:41, 13 December 2023
- NAIH (Hungary) - NAIH/2020/193/8 (category Article 5(1)(d) GDPR)referred to as the General Data Protection Regulation) Article 16, Article 17(1) (a) and Article 5 (1) (d) of the General Data Protection Regulation. 2) states58 KB (9,413 words) - 10:11, 17 November 2023
- NAIH (Hungary) - NAIH/2020/2000/5 (category Article 5(1)(a) GDPR)to data subjects when personal data concerning the data subject are collected from the data subject: (b) the contact details of the data protection officer24 KB (3,815 words) - 10:11, 17 November 2023
- AZOP (Croatia) - Decision 21-01-2022 (category Article 5(1)(a) GDPR)processing of personal data and on the free movement of such data and repealing Directive 95/46 / EC: General Data Protection Regulation personal data must be18 KB (2,722 words) - 15:26, 30 October 2023
- AEPD (Spain) - 0098/2022 (category Article 6(1)(e) GDPR)95/46/EC (General Regulation of data protection, GDPR) defines in its article 4.14 the biometric data as “personal data obtained from a specific technical56 KB (8,102 words) - 13:57, 1 February 2023
- NAIH (Hungary) - NAIH/2020/6484 (category Article 15(1)(a) GDPR)Pursuant to Article 2 (1) of the General Data Protection Regulation, this is the case here the general data protection regulation applies to data processing27 KB (4,159 words) - 10:13, 17 November 2023
- 95/46/EC (General Data Protection Regulation), hereinafter 'AVG'; Having regard to the Act of 3 December 2017 establishing the Data Protection Authority, hereinafter206 KB (30,485 words) - 09:54, 14 December 2023
- CJEU - C-205/21 - Ministerstvo na vatreshnite raboti (category Article 9 GDPR)of personal data – Purpose limitation – Data minimisation – Article 6(a) – Clear distinction between personal data of different categories of data subjects110 KB (18,000 words) - 08:01, 5 June 2023
- NAIH (Hungary) - NAIH/2020/3479 (category Article 5(1)(d) GDPR)processing of personal data infringes this Regulation. " Article 5 (1) (d) of the General Data Protection Regulation states: “Personal data shall: […] (d)30 KB (4,563 words) - 10:12, 17 November 2023
- AEPD (Spain) - EXP202204461 (category Article 5(1)(f) GDPR)the European Data Protection Regulation and the Organic Law 3/2018 of Protection tion of Personal Data and Guarantee of Digital Rights. Article 22 section24 KB (3,631 words) - 13:20, 13 December 2023
- on the users device. Article 82 of the French Data Protection Act The DPA explained that Article 82 of the French Data Protection Act required the provider73 KB (11,864 words) - 17:03, 6 December 2023
- AEPD (Spain) - PS/00385/2020 (category Article 6(1)(a) GDPR)provides information about, the personal data that is collected; on how this personal data is obtained; about the purpose of data processing; on the legal basis55 KB (8,967 words) - 14:33, 13 December 2023
- AEPD (Spain) - PS/00315/2019 (category Article 13 GDPR)on the protection of individuals with regard to the processing of personal data and on the free movement of such data (General Data Protection Regulation17 KB (2,633 words) - 14:28, 13 December 2023
- AP (The Netherlands) - 26.11.2020 (category Article 32(1) GDPR)processing of personal data; [...]. 15. "Health data" means personal data relating to the physical or mental health of a natural person, including data relating67 KB (11,415 words) - 17:15, 12 December 2023
- Datatilsynet (Denmark) - 2019-31-1424 (category Article 15 GDPR)Legal basis 3.1. The concept of personal data The term personal data is defined in Article 4 (1) of the Data Protection Regulation as any form of information33 KB (5,189 words) - 16:23, 6 December 2023
- NAIH (Hungary) - NAIH-2020-2546-5 (category Article 5(1)(c) GDPR)right to the protection of personal data In order to do so, the Authority may initiate ex officio data protection proceedings. The data protection authority72 KB (11,159 words) - 10:09, 17 November 2023
- AEPD (Spain) - PS/00240/2019 (category Article 5(1)(b) GDPR) (section On the data minimization principle)the claim. According to the former Data Protection Directive, to the former Spanish Data Protection Act (in its Article 29), to the CJEU (C-468/10 y C-469/10602 KB (102,229 words) - 14:21, 13 December 2023
- AEPD (Spain) - PS/00059/2020 (category Article 28 GDPR)handling data personal data (through the appropriate channel) the data protection policy and procedures and Privacy? BUT C.5 Is the privacy and data protection287 KB (48,336 words) - 13:53, 13 December 2023
- handling of personal data in the competent department was in accordance with the applicable data protection regulations and that personal data would not25 KB (3,723 words) - 11:50, 10 September 2021
- VG Potsdam - VG 3 K 1458/19 (category Article 17 GDPR)to the processing of personal data, on the free movement of such data and repealing Directive 95/ 46/EC (General Data Protection Regulation, OJ L 119 of23 KB (3,560 words) - 14:17, 21 February 2024
- FG München - Auskunftsanspruch nach Art. 15 DSGVO (category Article 15(3) GDPR)and means of processing personal data. § 2a AO also links the responsibilities in connection with the protection of personal data to the tax authority or97 KB (16,519 words) - 09:57, 22 February 2023
- OLG Hamm - 7 U 19/23 (category Article 82 GDPR)their personal data, the data subject claimed damages under Article 82 GDPR. The Court of first instance rejected the data subject’s claim. The data subject130 KB (21,874 words) - 09:43, 15 February 2024
- AEPD (Spain) - PS/00324/2019 (category Article 13 GDPR)the Protection of Personal Data (LOPD), and Regulation (EU) 2016/679, of the European Parliament and Council, of April 27 ("General Data Protection Regulation"22 KB (3,480 words) - 14:28, 13 December 2023
- CNPD (Luxembourg) - Délibération n° 47FR/2021 (category Article 5(1)(c) GDPR)April 2016 on the protection of individuals with regard to the processing of personal data personal data and on the free movement of such data, and repealing69 KB (11,315 words) - 13:30, 19 January 2022
- Garante per la protezione dei dati personali (Italy) - 9685922 (category Article 5(1)(f) GDPR)"Guidelines 4/2019 on article 25 Data protection by design and by default ", adopted on 20 October 2020 by the European Data Protection Board, spec. Points119 KB (19,123 words) - 11:29, 16 August 2022
- AEPD (Spain) - PS/00266/2019 (category Article 13 GDPR)provided to the data subject at the time of collection of the data, provides that "1.When personal data are obtained from a data subject, the data controller28 KB (4,459 words) - 14:23, 13 December 2023
- AEPD (Spain) - PS/00268/2019 (category Article 13 GDPR)provided to the data subject at the time of collection of the data, provides that "1. Where personal data are obtained from a data subject, the data controller28 KB (4,435 words) - 14:23, 13 December 2023
- on the protection of natural persons with regard to the processing of personal data and the free movement of such data, approved the Personal Data Protection233 KB (37,080 words) - 20:01, 31 March 2021
- AEPD (Spain) - PS/00357/2020 (category Article 13 GDPR)the protection of natural persons in what Regarding the processing of personal data and the free circulation of these data (General Data Protection Regulation20 KB (3,075 words) - 14:32, 13 December 2023
- AP (The Netherlands) - 25.11.2021 (redirect from AP (The Netherlands) - Tax Administration fined for discriminatory and unlawful data processing) (category Article 5(1)(a) GDPR)the General Ordinance data protection (hereinafter: AVG), and article 6 read in conjunction with article 8 of the Act data protection (hereinafter: Wbp).87 KB (11,601 words) - 17:08, 12 December 2023
- CNIL (France) - SAN-2021-003 (category Article 4(1) GDPR) (section On the violation of French Data Protection Act, implementing Directive (EU) 2016/680)the Data Protection Act have occurred. 2. On the failure to inform individuals Under the terms of article 104 of the Data Protection Act, the data controller39 KB (6,015 words) - 17:11, 6 December 2023
- VG Wiesbaden - 6 L 738/21.WI (category Article 49 GDPR)lawfulness of the data transfer in relation to Article 48 and Article 49 GDPR. Third, the Court never assessed whether the US Cloud Act would undermine the35 KB (5,925 words) - 09:07, 22 December 2021
- RvS - 201902417/1/A2 (category Article 6(1)(e) GDPR)established whether the Board had processed personal data in violation of the Personal Data Protection Act. 7. The Division annulled the decision of 2337 KB (5,721 words) - 12:41, 16 September 2021
- AEPD (Spain) - PS/00100/2020 (category Article 13 GDPR)collection of their personal data. In particular, it states that: Where personal data are collected from a data subject, the data controller shall, at27 KB (4,296 words) - 13:59, 13 December 2023
- AP (The Netherlands) - z2018-02009 (category Article 32 GDPR)Dutch Data Protection Authority (hereinafter: the Dutch DPA) has on 27 March 2017 pursuant to Article 60 of the The Personal Data Protection Act (hereinafter:33 KB (5,112 words) - 17:10, 12 December 2023
- GDPR (Article 57, 1., a) GDPR), and the performance of all other related tasks with the protection of personal data (Article 57, 1., v) GDPR). 10 49. In35 KB (5,303 words) - 17:01, 12 December 2023
- IP - 07121-1/2020/1180 (category Article 49(1) GDPR)the General Regulation on Data Protection), point 7 of the first paragraph of Article 49 of the Personal Data Protection Act (Official Gazette of the Republic12 KB (1,804 words) - 11:06, 13 January 2021
- VGH München – 11 ZB 19.991 (category Article 5(1)(b) GDPR)GDPR and the Federal Data Protection Act did not prevent the transmission of driver data to the Police Administration Office, a data processing in the sense31 KB (5,184 words) - 17:19, 15 April 2023
- CNIL (France) - SAN-2023-076 (category Article 14 GDPR)a continuous basis (Article 3 of Act No. 2023-380 of 19 May 2023). Moreover, Article 2 of the draft decree guaranteed that the data collected would not36 KB (5,524 words) - 17:01, 6 December 2023
- AEPD (Spain) - PS/00279/2020 (category Article 6 GDPR)the protection of natural persons in the regarding the processing of personal data and the free circulation of these data (General Data Protection Regulation21 KB (3,123 words) - 14:25, 13 December 2023
- AEPD (Spain) - EXP202103039 (category Article 13 GDPR)Processing of Personal Data and the Free Circulation of these Data (RGPD) and Organic Law 3/2018, of December 5, on Data Protection Personal and Guarantee22 KB (3,385 words) - 13:35, 13 December 2023
- offering of a mechanism to oppose the processing of personal for marketing purposes, prohibited by article 21.1 of the LSSI? In this case, there was no dispute25 KB (4,100 words) - 14:05, 13 December 2023
- APD/GBA (Belgium) - 19/2020 (category Article 5(1)(b) GDPR)95/46/EC (General Data Protection Regulation), hereinafter GDPR; Having regard to the Act of 3 December 2017 establishing the Data Protection Authority (hereinafter39 KB (6,246 words) - 16:55, 12 December 2023
- UODO (Poland) - DKN.5131.49.2021 (category Article 33(1) GDPR)failure to notify the President of the Personal Data Protection Office of a breach of personal data protection without undue delay, no later than within63 KB (10,380 words) - 08:26, 17 October 2023
- CNPD (Luxembourg) - Délibération n° 20FR/2021 (category Article 38(1) GDPR)organization of the National Commission for the Protection data and the general data protection regime, in particular Article 41 thereof; Having regard to the internal66 KB (9,458 words) - 19:42, 4 September 2021
- CNIL (France) - SAN-2019-001 (category Article 4(11) GDPR)active in the field of the protection of the rights and freedoms of data subjects in the context of the protection of personal data, to lodge a complaint on90 KB (14,556 words) - 17:08, 6 December 2023
- AEPD (Spain) - PS/00423/2019 (category Article 13 GDPR)on the protection of individuals with regard to the processing of personal data and on the free movement of such data (General Data Protection Regulation23 KB (3,636 words) - 14:38, 13 December 2023
- Commissioner (Cyprus) - 17.05.23 (category Article 5(1)(c) GDPR)this through Article 29(1), which provides that: "29(1) The processing of personal data or special categories of personal data or personal data relating to31 KB (4,973 words) - 16:50, 6 December 2023
- Commissioner (Cyprus) - 11.17.001.010.045 (category Article 5(1)(c) GDPR)the data subject that require the protection of personal data (see Article 6(1)(f) ), etc. 3.5 Article 14 provides for the information of the data subject74 KB (12,375 words) - 10:07, 4 October 2023
- NAIH (Hungary) - NAIH-373-31/2023 (category Article 5(1)(b) GDPR)name and address data in the context of the request for data provision from the personal data and address register to the Personal Data and Licensing Department140 KB (23,189 words) - 08:25, 20 February 2024
- BVerfG - 1 BvR 16/13 (category Article 17 GDPR)October 1995 on the protection of individuals with regard to the processing of personal data and on the free movement of such data (OJ 1995 L 281, p. 31;133 KB (21,944 words) - 15:59, 22 March 2022
- APD/GBA (Belgium) - 149/2022 (category Article 49(1)(d) GDPR)it did not transfer personal data to Turkey, because it was the processor which provided personal data to - and received personal data from its Turkish processor89 KB (13,017 words) - 15:07, 2 November 2022
- APD/GBA (Belgium) - 24/2021 (category Article 6 GDPR)as well as the drawn up data protection impact assessment that this data subject personal data processing is based on Article 6.1 e) GDPR. More specifically110 KB (18,238 words) - 16:56, 12 December 2023
- APD/GBA (Belgium) - 49/2023 (category Article 6(1)(e) GDPR)considered as "highly personal" data in the meaning that the European Data Protection Board (EDPB) has given to this concept in its Data Protection Impact Assessment57 KB (8,705 words) - 11:48, 16 May 2023
- APD/GBA (Belgium) - 138/2022 (category Article 5(1)(a) GDPR)containing provisions on the protection of personal data.” 16. Article 4, §2, second paragraph WOG also states: “The Data Protection Authority is the competent43 KB (6,274 words) - 08:57, 29 June 2023
- APD/GBA (Belgium) - 61/2020 (category Article 5(1)(d) GDPR)2018 on the protection of natural resourcespersonswithrelationuntiltheprocessingfrompersonal data). 738. Article 26, 7 ° Data Protection Act exhaustively41 KB (6,354 words) - 16:59, 12 December 2023
- CE - N° 444937 (category Article 49 GDPR)the centralisation and data processing of personal data relating to Covid-19 on the health data platform ‘Health Data Hub’ (data controller). The EU subsidiary51 KB (7,830 words) - 09:50, 29 October 2020
- BVwG - W211 2210458-1/10 (category Article 2(1) GDPR)any event, the recorded image data constituted personal data within the meaning of Article 4 item 1 of the Data Protection Act of the next search term; due92 KB (15,435 words) - 16:00, 22 March 2022
- AEPD (Spain) - EXP202102088 (category Article 13 GDPR)individuals with regard to the processing of personal data and the free circulation of these data (General Data Protection Regulation, hereinafter RGPD) recognizes26 KB (3,881 words) - 13:35, 13 December 2023
- AEPD (Spain) - EXP202206542 (category Article 5(1) GDPR)Spanish Protection Agency of data. Likewise, article 63.2 of the LOPDGDD determines that: "The procedures processed by the Spanish Data Protection Agency24 KB (3,749 words) - 13:19, 13 December 2023
- AEPD (Spain) - PS/00043/2020 (category Article 13 GDPR)deleted personal data that is inaccurate. Personal data must be a a way that ensures adequate data security and confidentiality personal data, including24 KB (3,838 words) - 13:51, 13 December 2023
- CNPD (Luxembourg) - Délibération n° 18/FR/2022 (category Article 5(1)(b) GDPR)2016 on the protection of individuals with regard to the processing of personal data personal character and on the free movement of such data, and repealing76 KB (11,147 words) - 16:58, 6 December 2023
- OLG Köln - 6 U 58/23 (category Article 49 GDPR)transfer of personal data to US-based companies was unlawful, as there was no basis for an adequate transfer of personal data to the US under Article 44 GDPR118 KB (19,824 words) - 10:49, 6 February 2024
- AEPD (Spain) - PS/00317/2020 (category Article 13 GDPR)3/2018, of December 5, Protection of Personal Data and Guarantee of Digital Rights (LOPDGDD), the Director of the Spanish Data Protection Agency is competent31 KB (4,862 words) - 14:28, 13 December 2023
- AP (The Netherlands) - 24.02.2022 (category Article 13(1)(e) GDPR)part of this data is biometric data within the meaning of article 4, under 14, and article 9 AVG and thus qualify as special personal data. 24. Continue179 KB (22,957 words) - 17:07, 12 December 2023
- APD/GBA (Belgium) - 149/2023 (category Article 5(1)(a) GDPR)meaning of article 4.19 of the GDPR – (article 13.1. c) of the GDPR) and does not mention the data retention periods personal data processed (article 13.2.113 KB (17,325 words) - 08:50, 19 March 2024
- CNPD (Portugal) - Deliberação 2022/1072 (category Article 9(1) GDPR)without an adequate level of protection for personal data. The controller also authorised Cloudflare to transfer personal data to the USA. Successive subcontracting163 KB (27,222 words) - 16:54, 6 December 2023
- NAIH (Hungary) - NAIH/2020/34/3 (category Article 12(2) GDPR)the protection of personal data, the Authority may, upon request, initiate data protection authority proceedings and may ex officio initiate data protection48 KB (7,727 words) - 10:11, 17 November 2023
- GHAL - 200.256.426 (category Article 4(2) GDPR)right to protection of personal data (Article 8 of the Charter) or respect for privacy (Article 8 ECHR) for its refusal to provide personal data of customers40 KB (6,777 words) - 16:28, 15 March 2022
- Datatilsynet (Denmark) - 2019-431-0052 (category Article 4(11) GDPR)processing of personal data, as set out in Article 5 of the Data Protection Regulation, must be observed in any processing of personal data. This means,27 KB (4,300 words) - 16:36, 6 December 2023
- Garante per la protezione dei dati personali (Italy) - 9754332 (category Article 28(2) GDPR)Guarantor for the protection of personal data, Doc. web n. 1098801; SPEAKER Attorney Guido Scorza; WHEREAS 1. The violation of personal data. With a note of37 KB (6,034 words) - 16:59, 23 March 2022
- AEPD (Spain) - PS/00221/2020 (category Article 14 GDPR)Spanish Agency for Data Protection " V By virtue of the provisions of article 58.2 of the RGPD, the Spanish Agency for Data Protection, as a control authority29 KB (4,537 words) - 14:19, 13 December 2023
- APD/GBA (Belgium) - 28/2020 (category Article 6(1)(f) GDPR)95/46/EC (General Data Protection Regulation), hereinafter AVG; Having regard to the Act of 3 December 2017 establishing the Data Protection Authority, hereinafter27 KB (4,363 words) - 16:56, 12 December 2023
- IP - 0712-1/2019/2725 (category Article 58(3) GDPR)that the protection of personal data refers to the processing of personal data, with personal data being data that point to an individual. Data relating5 KB (506 words) - 14:45, 17 March 2022
- AEPD (Spain) - PS/00112/2020 (category Article 13 GDPR)Although, according to Article 72 of the Spanish Law on Personal Data Protection and Digital Guarantees (LOPDGDD), the infringement of Article 13 GDPR is considered29 KB (4,402 words) - 14:00, 13 December 2023
- Garante per la protezione dei dati personali (Italy) - 9698724 (category Article 5(1)(a) GDPR)"transparency principle" (Article 5, letter a) of the Regulation). 3.2. The principles of data protection by design and data protection by default According83 KB (13,648 words) - 11:30, 16 August 2022
- AEPD (Spain) - EXP202204631 (category Article 5(1)(f) GDPR)the personal data of those affected (***URL.1) SECOND: In accordance with article 65.4 of Organic Law 3/2018, of 5 December, Protection of Personal Data36 KB (5,485 words) - 13:19, 13 December 2023
- AP (The Netherlands) - 23.09.2021 (category Article 32(1) GDPR)systems personal data copied to a remote location. 2.2 Type of data There are two groups to distinguish personal data in this breach: (1) personal data that66 KB (8,861 words) - 17:08, 12 December 2023
- APD/GBA (Belgium) - 105/2023 (category Article 5(1)(a) GDPR)guaranteed in Article 22 of the Constitution (as well as in treaties), a wide scope and, inter alia, the protection of personal data and personal data information102 KB (15,787 words) - 07:39, 6 September 2023
- AEPD (Spain) - PS/00416/2019 (category Article 6 GDPR)automated personal data processing activity; and (iii) the commercial interests of a data controller must yield to the legitimate data protection interests206 KB (32,869 words) - 14:36, 13 December 2023
- EWHC (UK) - Johnson v Eastlight Community Homes Ltd (category Article 82 GDPR)169 of the Data Protection Act 2018, declarations that the processing of the Claimant's personal data amounted to (i) a breach of her Article 8 ECHR rights46 KB (7,676 words) - 10:45, 7 December 2021
- IMY (Sweden) - IMY-2022-1621 (category Article 9 GDPR)and data minimization (Article 5 of the Data Protection Regulation), • has support in some legal basis for the processing of personal data (Article 6 i145 KB (16,497 words) - 08:54, 19 October 2022
- Tietosuojavaltuutetun toimisto (Finland) - 8393/161/2019 (category Article 5(1)(c) GDPR)profiling, the processing of personal data a list decided by its Data Protection Regulation, the Data Protection Act or the Data Protection Officer by. According111 KB (17,604 words) - 13:08, 3 March 2024
- IP - 07121-1/2020/1242 (category Article 58 GDPR)paragraph of Article 49 of the Personal Data Protection Act (Official Gazette of the Republic of Slovenia, No. 94/07-UPB1, hereinafter ZVOP-1) and Article 2 of6 KB (806 words) - 11:06, 13 January 2021
- UODO (Poland) - ZSPR.421.3.2018 (category Article 14 GDPR)the Personal Data Protection Office states the following. The President of UODO is the authority competent in matters of personal data protection (Art52 KB (8,444 words) - 10:01, 17 November 2023
- CNIL (France) - SAN-2020-056 (category Article 5(1)(d) GDPR)to the provisions of Article 6.III of the aforementioned Act N° 78-17 of January 6, 1978 (hereinafter the "French data protection act"). 2. In accordance43 KB (6,847 words) - 17:11, 6 December 2023
- APD/GBA (Belgium) - 17/2020 (category Article 12(3) GDPR)erase personal data, or a restriction on the processing of the data (b) the right to object to the processing of personal data relating to the data subject;52 KB (8,603 words) - 16:55, 12 December 2023
- BGH - I ZR 7/16 (category Article 4(11) GDPR)processing of personal data and the protection of privacy in the electronic communications sector and Regulation (EC) No. 2006/2004 on consumer protection cooperation52 KB (8,575 words) - 15:55, 22 March 2022
- IP - 07121-1/2021/662 (category Article 4(1) GDPR)the General Regulation on Data Protection), point 7 of the first paragraph of Article 49 of the Personal Data Protection Act (Official Gazette of the Republic7 KB (1,003 words) - 09:57, 14 April 2021
- ICO (UK) - Enforcement Notice and Warning Letter - Home Office (category Article 5(2) GDPR)sensitive data or data of a highly personal nature; processing of data on a large scale; and processing personal data concerning vulnerable data subjects129 KB (17,281 words) - 14:57, 10 April 2024
- Council of State - 251.378 (category Article 28(1) GDPR)April 2016 on the protection of individuals with regard to data protection processing of personal data and on the free movement of such data and repealing40 KB (6,324 words) - 15:34, 1 September 2021
- NAIH (Hungary) - NAIH/2020/2729/15 (category Article 5(1)(b) GDPR)with Article 2 (1) of the General Data Protection Regulation the general data protection regulation applies to data processing. According to Article 4 (1)58 KB (9,071 words) - 10:12, 17 November 2023
- OLG Koln - 15 U 45/23 (category Article 16 GDPR)correct the data it has from the data subject, refrain from blocking or deactivating the data subject's and pay damages of €1,500 to the data subject. The26 KB (4,187 words) - 14:46, 8 May 2024
- IP - 07121-1/2020/693 (category Article 13 GDPR)first paragraph of Article 49 of the Personal Data Protection Act (Official Gazette RS, No. 94/07-UPB1, hereinafter ZVOP-1), and Article 2 of the Information9 KB (1,166 words) - 15:24, 17 March 2022
- APD/GBA (Belgium) - 145/2023 (category Article 4(1) GDPR)principles of personal data protection, in the context of this Act and of laws containing provisions on the protection of the processing of personal data." 4 See39 KB (6,247 words) - 09:14, 15 November 2023
- rights 100. Article 15 of the RGPD provides that data subjects have the right to obtain confirmation from the data controller that personal data concerning104 KB (16,646 words) - 17:09, 6 December 2023
- AEPD (Spain) - PS/00132/2022 (category Article 6(1) GDPR)of personal data. Individuals with regard to the Processing of Personal Data and on the Free Movement of such Data (EU Circulation of Personal Data (GDPR)52 KB (8,416 words) - 12:59, 13 December 2023
- Garante per la protezione dei dati personali (Italy) - 9685947 (category Article 28 GDPR)legislation on the protection of personal data, it is necessary to precisely identify the subjects who, for various reasons, can process personal data and clearly115 KB (18,595 words) - 11:30, 16 August 2022
- AEPD (Spain) - PS/00075/2020 (category Article 6(1)(a) GDPR)interested party. When personal data are obtained from a data subject, when the data are obtained, the data controller will provide you with all the information31 KB (4,909 words) - 13:56, 13 December 2023
- CE - 466115 (category Article 5 GDPR)to the processing of personal data and to free movement of these data, and repealing Directive 95/46/EC (general data protection regulation), in that they28 KB (4,287 words) - 09:20, 23 February 2024
- Datatilsynet (Norway) - 20/03771-17 (category Article 49 GDPR)provided that personal data was processed, whether or not this personal data was transferred to the US; c) provided that the personal data was processed69 KB (10,520 words) - 07:55, 10 August 2023
- EDPB - Binding Decision 2/2022 - 'Instagram' (category Article 5(1)(c) GDPR)undermine the protection of personal data of individuals that enter into contracts that entail processing of personal data; it would also deprive data subjects276 KB (38,206 words) - 09:46, 20 January 2023
- CNIL (France) - SAN-2021-023 (category Article 56 GDPR)relating to data processing, files and freedoms (hereinafter " the Data Protection Act ") and in particular its article 82. 6. Pursuant to Article 22 of the120 KB (19,650 words) - 09:00, 6 April 2022
- CNIL (France) - SAN-2021-020 (category Article 28(3) GDPR) (section On the failure to comply with Article 28 GDPR)to the protection of personal data and the free movement of such data; Considering the law n° 78-17 of January 6, 1978 modified relating to data processing56 KB (9,069 words) - 17:02, 6 December 2023
- IP - 07121-1 / 2020/2263 (category Article 5 GDPR)to the protection of personal data and privacy. Regarding the security of personal data, IP also emphasizes that the controller of personal data must adequately9 KB (1,363 words) - 23:05, 10 February 2021
- IP - 07121-1/2020/1570 (category Article 6(3) GDPR)point 7 of the first paragraph of Article 49 of the Personal Data Protection Act (Official Gazette of the Republic of Slovenia, No. 94/07, official consolidated9 KB (1,289 words) - 11:06, 13 January 2021
- NAIH (Hungary) - NAIH/2020/1154/9 (category Article 6(1)(f) GDPR)violated the general data protectionArticle 5 (1) (a), Article 5 (2), Article 12 (1) and (4) ofArticle 14, Article 15 and Article 21 (4).1.3. The Authority192 KB (30,170 words) - 10:11, 17 November 2023
- AEPD (Spain) - PS/00062/2020 (category Article 13 GDPR)of the personal data protection regulations »: "It can not be true!!!!! You are not yet adapted to the new general regulation of data protection (RGPD)44 KB (7,162 words) - 13:53, 13 December 2023
- IP - 07121-1/2020/428 (category Article 6 GDPR)point 7 of the first paragraph of Article 49 of the Personal Data Protection Act (Official Gazette of the Republic of Slovenia, No. 94/07, officially consolidated9 KB (1,211 words) - 11:57, 24 March 2022
- AEPD (Spain) - PS/00267/2020 (category Article 49 GDPR)complied with: . Article 7.5 of Organic Law 15/1999, of December 13, on Data Protection of Personal Character (LOPD), “Specially protected data”: those related208 KB (33,882 words) - 14:25, 24 November 2022
- IP - 07121-1/2020/197 (category Article 58(3) GDPR)referred to as the General Data Protection Regulation), point 7 of the first paragraph of Article 49 of the Personal Data Protection Act (Official Gazette RS12 KB (1,773 words) - 14:49, 17 March 2022
- IP - 07121-1/2020/527 (category Article 58(3) GDPR)first paragraph of Article 49 of the Personal Data Protection Act (Official Gazette RS, No. 94/07-UPB1, hereinafter ZVOP-1 ) and Article 2 of the Information10 KB (1,467 words) - 15:22, 17 March 2022