Search results
From GDPRhub
- UODO (Poland) - DKN.5131.6.2020 (category Article 33(1) GDPR)as Article 57 (1) (a), Article 58 (2) (e) and (i), Article 83 (1) - (3) and Article 83 (4) (a) in connection with Article 33 (1) and Article 34 (1), (2)66 KB (10,785 words) - 10:00, 17 November 2023
- BVwG - W214 2233132-1/13E (category Article 15(1)(c) GDPR)under Article 77 GDPR was very clear and limited in scope. However, the DSB went on to assert a violation of Article 12 GDPR and Article 15(1)(h) GDPR, acting47 KB (7,519 words) - 09:28, 13 February 2024
- BVwG - W245 2252208-1/36E and W245 2252221-1/30E (category Article 44 GDPR)II.3.3. Regarding the scope of Art. 44 ff GDPR: If the following three requirements are met, there is a transfer and Chapter V (Art. 44 ff) GDPR is applicable158 KB (26,392 words) - 08:25, 7 June 2023
- purposes, with the exception of Article 28-32, which still applies. Personal data may be processed under Article 6 and Article 9 for the purpose of fulfilling5 KB (582 words) - 17:53, 3 March 2020
- APD/GBA (Belgium) - 37/2020 (category Article 17 GDPR)provided for in Article 56(1), read in conjunction with Article 56(2), read in conjunction with Article 56(3), read in conjunction with Article 56(4), read131 KB (22,429 words) - 16:57, 12 December 2023
- AEPD (Spain) - EXP202105680 (category Article 9 GDPR)requires both a legal basis under Article 6 of the GDPR, such as compliance with one of the conditions of article 9.2 of the GDPR. The Data controllers must be66 KB (10,558 words) - 13:14, 13 December 2023
- AEPD (Spain) - EXP202105344 (category Article 6(1) GDPR)claimed party, for the alleged infringement of Article 6.1 of the RGPD, typified in Article 83.5 of the GDPR. FIFTH: Notification of the aforementioned start-up22 KB (3,319 words) - 13:00, 13 December 2023
- AEPD (Spain) - EXP202201746 (category Article 5(1)(f) GDPR)infringement of Article 32 GDPR. Therefore, the Spanish DPA issued a warning sanction for each violation of Article 5(1)(f) and Article 32 GDPR. AEPD highlighted62 KB (9,703 words) - 13:05, 13 December 2023
- the following: Article 66 GDPR gives the possibility for a procedure of urgency and from this article (and Article 66 and Article 62 GDPR), the European25 KB (3,812 words) - 10:03, 20 August 2021
- AEPD (Spain) - EXP202201721 (category Article 6(1) GDPR)violated Article 6 and Article 32 GDPR. The DPA seems to consider the authentication procedure itself as "processing" and therefore Article 32 GDPR applies79 KB (12,408 words) - 13:24, 13 December 2023
- AEPD (Spain) - EXP202209001 (category Article 5(1)(c) GDPR)LPACAP), for the alleged violation of Article 5.1.c) of the RGPD, typified in the Article 83.5 of the GDPR. C/ Jorge Juan, 6 www.aepd.es 28001 – Madrid sedeagpd22 KB (3,303 words) - 13:28, 13 December 2023
- AEPD (Spain) - EXP202205104 (category Article 6(1) GDPR)infringement for violation of Article 6.1 of the GDPR, due to lack of legitimacy in the treatment. Article 6 of the GDPR, under the heading "Lawfulness26 KB (4,147 words) - 13:27, 13 December 2023
- Helsingin hallinto-oikeus (Finland) - 116/2024 (category Article 5(1)(a) GDPR)life insurance company had breached Article 5(1)(a) GDPR, Article 5(1)(c) GDPR, Article 9 GDPR and Article 25(2) GDPR as its as its practice was to process41 KB (6,133 words) - 10:29, 25 March 2024
- AEPD (Spain) - EXP202100764 (category Article 5(1)(f) GDPR)the alleged violation of Article 5.1.f) of the RGPD and Article 32 of the RGPD, typified in Article 83.4 of the RGPD and Article 83.5 of the RGPD. The initiation34 KB (5,184 words) - 13:22, 13 December 2023
- AEPD (Spain) - TD/00183/2021 (category Article 15 GDPR)and the free circulation of these data (hereinafter, GDPR); and in article 47 of the Law Organic 3/2018, of December 5, Protection of Personal Data and20 KB (3,087 words) - 13:30, 13 December 2023
- CNPD (Portugal) - Deliberação 2021/533 (category Article 9 GDPR)2016 (General Data Protection Regulation - GDPR), in conjunction with Article 3, Article 4(2) and Article 6(1)(b), all of which are applicable to the processing30 KB (4,708 words) - 16:56, 6 December 2023
- Court of Appeal of Brussels - 2022/AR/549 (category Article 17(3)(e) GDPR)lawfulness, the Litigation Chamber concludes that Article 5.1.a. of the GDPR in conjunction with Article 6 of the GDPR have not been complied with with regard to37 KB (5,765 words) - 09:53, 14 December 2023
- CNIL (France) - SAN-2022-025 (category Article 4(11) GDPR)fine, the criteria specified in the same Article 83." 112. Under Article 83 of the GDPR, as referred to in Article 20(III) of the Data Protection Act: "182 KB (13,463 words) - 17:03, 6 December 2023
- LG Magdeburg - 9 O 1571/20 (category Article 6(1) GDPR)that under Article 82 (1) and (2) GDPR, any person who has suffered material or non-material damage as a result of a violation of the GDPR is entitled27 KB (4,216 words) - 13:26, 8 January 2024
- Datatilsynet (Norway) - 20/02178 (category Article 6(1)(f) GDPR)breached Article 6(1)(f) GDPR for lack of legal basis, Article 21 for lack of considering an objection, Article 13 for lack of information and Article 24 for7 KB (802 words) - 18:53, 17 May 2022
- Tietosuojavaltuutetun toimisto (Finland) - 8211/161/19 (category Article 5(1)(d) GDPR)this from happening, in violation with Article 24(1), Article 24(2), and Article 25(1) GDPR. According to Article 24(4) of the Finish Data Protection Act42 KB (6,579 words) - 08:46, 27 January 2022
- Tietosuojavaltuutetun toimisto (Finland) - 4356/532/19 (category Article 5(1)(a) GDPR)on final judgments did not comply with Article 25(1) GDPR. Pursuant to Article 58(2)(b) and Article 58(2)(d) GDPR, the DPA reprimanded the controller for43 KB (6,671 words) - 08:49, 27 January 2022
- Tietosuojavaltuutetun toimisto (Finland) - 834/532/18 (category Article 5(1)(a) GDPR)on final judgments did not comply with Article 25(1) GDPR. Pursuant to Article 58(2)(b) and Article 58(2)(d) GDPR, the DPA reprimanded the controller for43 KB (6,677 words) - 08:47, 27 January 2022
- Helsingin hallinto-oikeus (Finland) - H6072/2021 (category Article 6(1)(f) GDPR)right of freedom of expression and information within the meaning of Article 17(3)(a) GDPR. The controller also stated that there were compelling legitimate61 KB (9,876 words) - 21:38, 24 March 2024
- VGH Baden-Württemberg - 1 S 397/19 (category Article 5(1)(d) GDPR)force: "According to Article 16 sentence 1 GDPR, every data subject has the right to request the controller (see Article 4(7) GDPR) to correct incorrect112 KB (19,310 words) - 08:08, 23 June 2022
- Personvernnemnda (Norway) - 2021-03 (category Article 6(1)(f) GDPR)Ordinance Article 6 No. 1 letter f, for failure to assess protests, cf. Article 21, and for lack of information, cf. Article 13. 2. Pursuant to Article 58 (2)25 KB (4,046 words) - 18:37, 5 March 2022
- UODO (Poland) - ZSPR.421.2.2019 (category Article 6(1) GDPR)(f), Article 5(2), Article 6(1), Article 7(1), Article 24(1), Article 25(1), Article 32(1)(b), Article 32(1)(c) and Article 32(1)(b), Article 32(1)(c) and71 KB (11,304 words) - 10:01, 17 November 2023
- AEPD (Spain) - EXP202105644 (category Article 5(1)(f) GDPR)controller €80,000: €50,000 for the violation of Article 5(1)(f) GDPR and €30,000 for the violation of Article 32 GDPR. The original fine of €80,000 was reduced27 KB (4,121 words) - 15:06, 13 December 2023
- HDPA (Greece) - 4/2020 (category Article 15(3) GDPR)parent's request, thus violating Article 15(1) and (4) GDPR as well as the principle of accountability pursuant to Article 5(2) GDPR. The complainant requested18 KB (2,865 words) - 15:33, 6 December 2023
- HDPA (Greece) - 18/2020 (category Article 6(1) GDPR)conjunction with Articles 24 and 32 of the GDPR) to choose the appropriate legal basis provided for in Article 6(1) of the GDPR, as well as to be able to demonstrate12 KB (1,733 words) - 15:34, 6 December 2023
- OGH - 6Ob35/21x (category Article 4(1) GDPR)constitute personal data under Article 4(1) GDPR? If so, do they qualify as special categories of personal data under Article 9 GDPR? Is the defendant obliged27 KB (4,090 words) - 09:54, 10 September 2021
- OLG Köln - 15 U 126/19 (category Article 17(3) GDPR)pursuant to Article 17(1)(d) GDPR since the data was unlawfully processed. The defendant claimed that its activities fall under exception in (Article 85 GDPR)121 KB (20,412 words) - 15:58, 10 March 2022
- Datatilsynet (Norway) - 15/01355 (category Article 6(1) GDPR)Supervision: Article 6(1)(f), legitimate interest. For the special category personal data: About diagnosis: Article 6(1)(a), cf. Article 9(2)(a), consent16 KB (2,111 words) - 06:21, 6 March 2022
- LAG Hessen - 9 Sa 1431/19 (category Article 15(1) GDPR)purpose limitation in accordance with Article 5 Paragraph 1 Letter b GDPR (Paal/Pauly/Paal, 3rd edition 2021, GDPR Article 15 Rn. 24). The plaintiff has a right32 KB (5,093 words) - 16:07, 11 September 2022
- AEPD (Spain) - EXP202100300 (category Article 16 GDPR)included within the framework of data protection. Therefore, Article 16 GDPR cannot be applied. Article 16 refers to inaccurate personal data, not to the rectification16 KB (2,362 words) - 13:37, 13 December 2023
- OLG Nürnberg - 8 U 2907/21 (category Article 12(5)(b) GDPR)right to access under Article 15 GDPR because the controller was entitled to reject the request pursuant to Article 12(5)(b) GDPR. The court reasoned that24 KB (3,847 words) - 15:19, 11 September 2022
- OLG Köln - 15 U 89/19 (category Article 17(3) GDPR)under Article 17(3) GDPR. Two doctors sued a platform for deletion of their basic profile set up on the platform without their consent under Article 17 GDPR143 KB (24,273 words) - 15:59, 10 March 2022
- AEPD (Spain) - PS/00341/2019 (category Article 21 GDPR)AEPD found that the Socialist Party of Catalonia (PSC-PSOE) violated Article 21 GDPR due to unsolicited political propaganda sent after the data subject26 KB (4,032 words) - 14:31, 13 December 2023
- HDPA (Greece) - 28/2023 (category Article 58(2) GDPR)the same way. 6. Because the Authority has, based on article 15 par. 8 of Law 4624/2019 in combination with article 58 par. 2 of the GDPR, the authority9 KB (1,211 words) - 20:32, 8 January 2024
- CJEU - C‑340/21 - Natsionalna agentsia za prihodite (category Article 5 GDPR)prove that the implemented TOMs are appropriate under Article 32 GDPR? 4) Does Article 82(3) GDPR allow the controller to be exempt from liability for damages13 KB (1,963 words) - 11:04, 5 January 2024
- HDPA (Greece) - 37/2020 (category Article 4(7) GDPR)accordance with article 11 par.1 Law 3471/2006, as applicable, the prior consent of the data subject, without prejudice to paragraph 3 of the same article, as applicable14 KB (2,127 words) - 15:37, 6 December 2023
- CNPD (Luxembourg) - Délibération n° 20FR/2021 (category Article 38(3) GDPR)analyzes the criteria by Article 83.2 of the GDPR: - As to the nature and seriousness of the violation [article 83.2 a) of the GDPR], with regard to breaches66 KB (9,458 words) - 19:42, 4 September 2021
- OVG Sachsen-Anhalt - 1 M 49/23 (category Article 53(1) GDPR)this regulation in accordance with Article 57 (1) (a) GDPR and which has the powers in accordance with Article 58 GDPR. For this reason alone, there was14 KB (1,999 words) - 14:20, 18 July 2023
- AEPD (Spain) - EXP202205353 (category Article 5(1)(f) GDPR)the alleged violation of article 5.1.f) of the GDPR and article 32 of the GDPR, typified in article 83.5 and 83.4 of the GDPR. The initiation agreement22 KB (3,386 words) - 16:05, 13 December 2023
- CNIL (France) - SAN-2020-014 (category Article 9 GDPR)obligation of Article 32 GDPR? - Does the fact that this health data is not encrypted constitute a breach of the security obligation under Article 32 GDPR? - Does26 KB (4,050 words) - 17:10, 6 December 2023
- BVwG - W211 2225136-1 (category Article 6 GDPR)fulfilled. 2.3 On the basis of Article 6(1)(f) of the GDPR: The processing of personal data is permissible, inter alia, pursuant to Art. 6 (1) lit f DSGVO39 KB (6,244 words) - 09:40, 10 September 2021
- HDPA (Greece) - 11/2024 (category Article 17 GDPR)and on … she submitted another six (6 ) online applications for the following total links: 1. … 2. … 3. … 4. … 5. … 6. … 7. … 8. … 9. … 10. … 11. … 12. …36 KB (5,761 words) - 17:19, 22 April 2024
- Rb. Rotterdam - C/10/576074/HA RK 19-694 (category Article 15(3) GDPR)the documents or files containing their personal data under Article 15(3) GDPR and Article 12 of the ePrivacy Directive. However, there is a right to a15 KB (2,504 words) - 16:27, 10 March 2022
- BVerfG - 1 BvR 16/13 (category Article 17 GDPR)2, 59.3, 59.3, 59.3, 59.3, 59.3, 59.3, 59.3, 59.3, 59.3, 59.3, 59.3, 59.3, 59.3, 59.3, 59.3, 59.3, 59.3, 59.3, 59.3, 59.3, 59.3, 59.3, 59.3, 59.3, 59.3133 KB (21,944 words) - 15:59, 22 March 2022
- HDPA (Greece) - 31/2023 (category Article 5(1)(c) GDPR)their processing, according to with article 21 par. 1 of the GDPR, which is based on article 6 par. 1 item or GDPR. In his reply dated 24-05-2022, the61 KB (10,257 words) - 10:15, 1 November 2023
- EDPB - Binding Decision 1/2021 - 'WhatsApp' (category Article 4(24) GDPR) (section Additional infringement of Article 13(2)(e) GDPR)several paragraphs of Article 83 of the GDPR, as further summarised below. Fining of the ‘gravest infringement’. Article 83(3) GDPR provides that “[i]f a29 KB (4,384 words) - 16:00, 6 December 2023
- Personvernnemnda (Norway) - 2021-18 (20/02059) (category Article 6(1)(f) GDPR)around the processing of personal data subject to Article 10 GDPR. Pursuant to Article 6(1)(f) GDPR, the Privacy Appeals Board conducted a balancing test36 KB (5,859 words) - 06:40, 6 July 2022
- territorial application of the requirements set out in Article 82 of the Data Protection Act is set out in Article 3, paragraph I, of the same Act, which states:73 KB (11,864 words) - 17:03, 6 December 2023
- HDPA (Greece) - 33/2020 (category Article 17(3)(e) GDPR)such a fulfilment by Article 12(3) & (4) GDPR. For this reason, an administrative fine of 1000 EUR was imposed (Article 83(5)b GDPR). Share your comments20 KB (2,270 words) - 15:37, 6 December 2023
- CNIL (France) - SAN-2020-009 (category Article 5(1)(a) GDPR)and 13 GDPR? Is the information provided to data subjects throughout the subscription process in compliance with the provisions of Article 13 GDPR? Does48 KB (7,404 words) - 17:09, 6 December 2023
- Garante per la protezione dei dati personali (Italy) - 9860529 (category Article 9 GDPR)right to privacy. Health data are sensitive data covered by Article 9 GDPR. According to Article 137 of the Italian Data Protection Code, health data can16 KB (2,354 words) - 15:45, 6 December 2023
- CNIL (France) - SAN-2021-023 (category Article 56 GDPR) (section The material competence of the CNIL and the non-application of the "one-stop shop" mechanism provided for by the GDPR)all" button be considered a breach of GDPR Article 4(11) and Article 7, read in conjunction with GDPR Article 5(3) -Privacy while the data controller gives120 KB (19,650 words) - 09:00, 6 April 2022
- Tietosuojavaltuutetun toimisto (Finland) - 8493/161/21 (category Article 12(3) GDPR)the controller had violated Article 5(1)(a) GDPR, Article 12 GDPR, Article 13 GDPR, Article 15 GDPR and Article 25(1) GDPR. As a result, the DPA issued52 KB (7,936 words) - 22:32, 2 March 2024
- Tietosuojavaltuutetun toimisto (Finland) - 7285/183/18 (category Article 5(1)(a) GDPR)Protection Regulation Article 5(1)(a), (b) and (c). Article 7 Article 9 Article 25 paragraph 2 Article 58 Article 83 Data Protection Act Section 6 subsection 173 KB (11,237 words) - 05:34, 21 July 2022
- Tietosuojavaltuutetun toimisto (Finland) - 3216/452/17 (category Article 5(1)(a) GDPR)violated Article 5(1)(a) GDPR, Article 5(1)(c) GDPR, Article 9 GDPR and Article 25(2) GDPR. As a result, and in accordance with Article 58(2)(d) GDPR, the60 KB (9,117 words) - 14:46, 24 January 2024
- Tietosuojavaltuutetun toimisto (Finland) - 918/154/2019 (category Article 17(1) GDPR)was outdated and was no longer of importance to society. Pursuant to Article 17(1) GDPR, the data subject had requested Google LLC (the controller) to remove26 KB (4,072 words) - 12:18, 27 March 2024
- Garante per la protezione dei dati personali (Italy) - 9852214 (category Article 6 GDPR)in particular of children was in breach of Article 5, Article 6, Article 8, Article 9, and Article 25 GDPR. Consequently, the DPA urgently imposed upon36 KB (5,598 words) - 10:15, 8 February 2023
- CNIL (France) - SAN-2019-001 (category Article 6(1)(a) GDPR)comprehensible character, within the meaning of Article 12 of the GDPR, of the information provided for in Article 13 of the Regulation must be assessed. The90 KB (14,556 words) - 17:08, 6 December 2023
- CNIL (France) - SAN-2019-010 (category Article 5(1)(c) GDPR)investigations the CNIL found five breaches of the GDPR: - Violation of the right to object, Article 21(2) GDPR: no procedure was implemented to ensure effectively62 KB (10,001 words) - 17:09, 6 December 2023
- HDPA (Greece) - 30/2020 (category Article 6 GDPR)processing under Article 6 GDPR does not relieve the data processor from their responsibility to fulfil the prerequisites that Article 5(1) GDPR sets out. This20 KB (2,519 words) - 15:36, 6 December 2023
- HDPA (Greece) - 57/2021 (category Article 13 GDPR)2016/679 and article 11toun.3471 / 2006, according to article 58par.2 of the GCP in in combination with article 83 par. 5 of the GCC, and with article 21 par45 KB (7,165 words) - 15:22, 22 February 2022
- CJEU - T‑200/21 JS v European Data Protection Supervisor (EDPS) (category Article 17 GDPR)right to erasure (“right to be forgotten”) of Article 17 GDPR and Article 19 of Regulation 2018/1725. Under GDPR, such prolonged and unrestricted data retention61 KB (9,971 words) - 14:28, 4 January 2024
- CJEU - C‑634/21 - SCHUFA (category Article 22(1) GDPR)under Article 5 and 6 GDPR and the safeguards under Article 22 GDPR. If a national court were to find that national law is incompatible with Article 22(2)(b)6 KB (783 words) - 16:05, 12 December 2023
- HDPA (Greece) - 56/2021 (category Article 13 GDPR)and Article of 11Law No. 3471/2006, in accordance with Article 13(58i2) of the GDPR in conjunction with Article 83(1)(a) of the GDPR. 5 of the GDPR, and54 KB (8,916 words) - 15:22, 22 February 2022
- HDPA (Greece) - 3/2020 (category Article 15 GDPR)implementation of Regulation (EU) 2016/679 (GDPR).As the processing activity does not relate to a period of time during which the GDPR applied and, according to the19 KB (3,034 words) - 15:33, 6 December 2023
- |GDPR_Article_3=Article 99 GDPR |GDPR_Article_Link_3=Article 99 GDPR |GDPR_Article_4= |GDPR_Article_Link_4= |GDPR_Article_5= |GDPR_Article_Link_5= |GDPR_Article_6=32 KB (6,006 words) - 16:33, 7 July 2021
- |GDPR_Article_3=Article 99 GDPR |GDPR_Article_Link_3=Article 99 GDPR |GDPR_Article_4= |GDPR_Article_Link_4= |GDPR_Article_5= |GDPR_Article_Link_5= |GDPR_Article_6=34 KB (5,924 words) - 18:14, 20 April 2021
- ICO - Monetary Penalty on Ticketmaster UK Limited (category Article 4(2) GDPR)obligations under Article 5(1)(f) and Article 32 of GDPR. Article 5 (1) : Ticketmaster has failed to comply with the requirements of GDPR including to process130 KB (21,195 words) - 13:52, 25 April 2021
- Hoge Raad - ECLI:NL:PHR:2023:935 (category Article 5(1)(c) GDPR)judgment, is incomprehensible. 3.29 3.30 3.31 3.32 3.33 6.9 3.34 3.35 3.36 3.37 The contested consideration of the court from para. 6.9 reads as follows: “For103 KB (17,620 words) - 10:13, 29 November 2023
- Datatilsynet (Denmark) - 2020-32-1733 (category Article 6(1)(e) GDPR)pursuant to Article 6(1)(e) of the GDPR and § 1(2) of the Act of Statistics Denmark and is not obliged to delete it in accordance with the Article 17(3)(b) of16 KB (2,377 words) - 16:39, 6 December 2023
- Court of Appeal of Brussels - 2020/AR/813 (category Article 6(1) GDPR)Therefore the controller violated Article 5(1)(a) and (2), Article 6(1), Article 12(1), Article 13(1)(b) and (c) GDPR. The DPA imposed a fine of €50.00085 KB (12,340 words) - 15:30, 19 August 2022
- LG Köln - 28 O 138/22 (category Article 82 GDPR)analogously, Section 823 (1) and (2) BGB in conjunction with Article 6 (1) GDPR and Article 17 GDPR. Claims under data protection law could be asserted by way39 KB (6,362 words) - 14:01, 22 June 2023
- RvS - 201905347/1/A3 (category Article 6 GDPR)decision of the Minister is no longer based on Article 17(3) GDPR. Instead the decision is based on Article 6(4) GDPR. However the Minister did not explain well25 KB (3,824 words) - 22:46, 10 October 2020
- HDPA (Greece) - 48/2023 (category Article 6(1) GDPR)personal data in violation of Article 5(1)(a) GDPR, Article 6(1) GDPR, Article 12(3) GDPR, Article 12(4) GDPR and Article 15 GDPR. As such, the DPA issued a6 KB (685 words) - 14:58, 21 March 2024
- GHSHE (Netherlands) - 200.270.589 01 and 200.270.589 02 (category Article 6(1)(c) GDPR)BKR is covered by Article 6, clause 1 (c) of the AVG and not by Article 6, clause 6 (f) of the AVG. The BKR itself refers to Article 6, clause 1 (f) of91 KB (15,371 words) - 15:11, 5 October 2021
- ANSPDCP (Romania) - Fine to Dante Internațional SA (category Article 6 GDPR)they had exercised their right to object to processing as foreseen in Article 21(3) GDPR. The ANSPDCP confirmed that the complainant had exercised the right4 KB (414 words) - 11:04, 6 February 2024
- Commissioner (Cyprus) - 11.17.001.010.201 (category Article 6 GDPR)not be employee consent [Article 6(1)(a)], due to the nature of the employer-employee relationship.' 3. Rationale 3.1 Definitions 3.1.1 According to Articles23 KB (3,737 words) - 10:30, 7 June 2023
- GHDHA - C/09/574422 / HA RK 19-368 (category Article 1 GDPR)obligation (Article 4:32 § 1 Wft). Therefore, Article 6(1)(c) GDPR was relevant. However, the Court highlighted that the phrase "at least on" in Article 6(1) GDPR43 KB (7,297 words) - 12:26, 4 October 2021
- LG Krefeld - 2 O 448/20 (category Article 15(1) GDPR)regarded as an access request under Article 15(1) GDPR. According to Recital 63 GDPR, the right of access under Article 15 GDPR serves data subjects to be informed17 KB (2,758 words) - 14:10, 15 December 2021
- Commissioner (Cyprus) - 17.05.23 (category Article 6 GDPR)violations of Articles 5(1)(c) and 6 GDPR and Article 29(1) of Law 125(I)/2018. Concerning the violation of Article 29(1) of Law 125(I)/2018, the DPA took31 KB (4,973 words) - 16:50, 6 December 2023
- GHAL - 200.256.387 (category Article 6(1)(c) GDPR)virtue of Article 17(3)(b) GDPR. Indeed, it further is justified that the task carried out in the public interest under Article 6(1)(e) GDPR does not constitute27 KB (4,289 words) - 07:57, 7 March 2022
- DSB (Austria) - 2020-0.349.984 (category Article 6(1)(c) GDPR)prevail (Art. 6 Para. 1 lit. f GDPR). In this context, Art. 6 Para. 1 lit. c GDPR in conjunction with the PMG and Art. 6 Para. 1 lit. f GDPR relevant: The28 KB (4,228 words) - 14:00, 12 May 2023
- VGH München – 11 ZB 19.991 (category Article 6(1)(f) GDPR)would also be subject to the provisions of Article 6.1(e) DSGVO in conjunction with Article 6.1(b) DSGVO. Article 2, 28.2 no. 2 BayDSG without the consent31 KB (5,184 words) - 17:19, 15 April 2023
- HDPA (Greece) - 38/2020 (category Article 4(7) GDPR)accordance with article 11 par.1 Law 3471/2006, as applicable, the prior consent of the data subject, without prejudice to paragraph 3 of the same article, as applicable14 KB (2,070 words) - 15:38, 6 December 2023
- APD/GBA (Belgium) - 103/2022 (category Article 6(1)(a) GDPR)of Article 4(11). The DPA thus found another violation of Article 6(1)(a). The DPA further held that the controller violated Article 4(11), Article 12(1)6 KB (569 words) - 12:31, 3 August 2022
- Tietosuojavaltuutetun toimisto (Finland) - TSV/26/2020 (category Article 5(1)(e) GDPR)violated Article 5(1)(e) GDPR and Article 25(2) GDPR. As a result, the DPA issued a reprimand to the controller in accordance with Article 58(2)(b) GDPR. Pursuant77 KB (12,352 words) - 07:20, 23 April 2024
- AEPD (Spain) - PS/00148/2019 (category Article 6 GDPR)minutes 3:11:51 and 3:11:57; The video (2) NUM001, between minutes 3:12:06 and 3:12:28; The video (3) NUM002, between the minutes 3:12:54 and 3:13:04; The48 KB (7,550 words) - 14:05, 13 December 2023
- GHAL - 200.278.124/01 (category Article 6(1)(f) GDPR)in Article 17 GDPR (cf. Article 17 (3) b GDPR). In that case, the data subject does not have the right to object as referred to in Article 21 GDPR, because35 KB (5,805 words) - 10:04, 14 December 2023
- Datatilsynet (Norway) - 20/01626 (category Article 6 GDPR)as per Article 5(1)(b), nor legal grounds as per Article 6. In sum, the DPA found that NIF had breached Article 5(1)(a), (c) and (f), Article 6, and Article50 KB (8,081 words) - 18:52, 5 March 2022
- DSB (Austria) - 2020-0.743.659 (category Article 6(1)(c) GDPR)requirements of Article 9 GDPR. In the DSB held that the processing violated Articles 5, 6 and 9 GDPR: Consent under Articles 6(1)(a), 7 and 9(2)(a) GDPR cannot50 KB (8,015 words) - 13:52, 12 May 2023
- OLG Naumburg - 9 U 6/19 (category Article 9(1) GDPR)market participants. Specifically, these are Sections 17(3), 3(5) ApBetrO, 43 AMG, 11(1) sentence 1 no. 3, no. 7 and no. 11 HWG, and Section 14(2) no. 1 BerufsO32 KB (5,236 words) - 16:00, 10 March 2022
- APD/GBA (Belgium) - 140/2022 (category Article 12(3) GDPR)processing on the merits in accordance with Article 98 et seq. WOG, to: - on the basis of Article 58.2.c) GDPR and Article 95, §1, 5° WOG to the controller order17 KB (2,477 words) - 08:51, 29 June 2023
- EDPB - Binding Decision 2/2022 - 'Instagram' (category Article 6(1)(b) GDPR)the performance of a contract (Article 6(1)(b) GDPR) and for legitimate interest (Article 6(1)(f) GDPR). Article 6(1)(b) GDPR In its original draft decision276 KB (38,206 words) - 09:46, 20 January 2023
- DSB (Austria) - D130.206/0006-DSB/2019 (category Article 3(3) GDPR)applies on violations of Article 13 (and 14) GDPR. The DSB held that § 24(6) DSG also applies on violations of Article 13 and 14 GDPR. A controller may therefore40 KB (6,007 words) - 13:59, 12 May 2023
- LG Münster I - ECLI:DE:LGMS:2023:0704.16O238.22.00 (category Article 6(1)(f) GDPR)requirements of Art. 6 Paragraph 1 Sentence 1 Letter e GDPR and the requirements of Article 6 Paragraph 1 Sentence 1 Letter f GDPR do not apply in favor28 KB (4,215 words) - 15:09, 6 December 2023
- AP (The Netherlands) - 25.11.2021 (category Article 6(1)(e) GDPR)fairness principle, violating Article 5(1)(a) in conjunction with Article 6(1)(e) GDPR, and Article 6 in conjunction with Article 8 Personal Data Protection87 KB (11,601 words) - 17:08, 12 December 2023
- CNIL (France) - SAN-2023-082 (category Article 5(2) GDPR)obligations in accordance with Article 26 of the GDPR. 1.3. Processing of personal data included in the scope of this methodology 1.3.1. Only processing of personal46 KB (7,106 words) - 17:06, 6 December 2023
- RvS - 202100789/1/A3 (category Article 6(1)(e) GDPR)in accordance with Article 5, paragraph 1, preamble and under b, of the GDPR. 4.4. Article 6, paragraph 1, opening words, of the GDPR stipulates that processing20 KB (2,965 words) - 12:52, 28 June 2023
- Datatilsynet (Norway) - 20/02172 (category Article 6(1)(f) GDPR)under Article 6(1)(f) GDPR. The DPA also requires that the company implement internal controls of their credit rating process as per Article 24 GDPR. The28 KB (4,158 words) - 16:00, 29 May 2024
- Gerechtshof Amsterdam - 200.251.466/01 (category Article 21 GDPR)proceedings. 3.6.3. There is no dispute between the parties that the credit registration is based on article 4:32 Wft. This article implements Article 8 of Directive19 KB (3,021 words) - 15:48, 15 March 2022
- APD/GBA (Belgium) - 42/2022 (category Article 6(1)(f) GDPR)its legal basis under Article 6(1)(f) The Disputes Chamber proceeds to dismiss the complaint in accordance with article 95 , § 1, 3° WOG, giving three motives13 KB (1,908 words) - 08:54, 29 June 2023
- AKI (Estonia) - 2.1.-3/20/4479 (category Article 6 GDPR)with the precept was 01.12.2020. 3.3. On 1 December 2020, MustamäeApteek OÜ announced compliance with the precept. 3.4. On December 7, 2020, Mustamäe Apteek28 KB (4,474 words) - 10:31, 13 December 2023
- TGI Paris - N° 14/07224 (category Article 6(1)(a) GDPR)- articles 6/2 ° & 3 ° and 32 / I / 2 ° of the Data Protection Act for all contracts; * clause n ° 5 regarding - of article 6/1 °, 2 ° & 3 ° of the Data392 KB (67,730 words) - 15:27, 17 March 2022
- HG Wien - 57 Cg 32/20m (category Article 6(4) GDPR) (section Clause 3: Violation of the Transparency Principle under Article 5(1)(a) GDPR)based on a legitimate interest under Article 6(1)(f) GDPR, so that the principle of lawfulness under Article 5(1)(a) GDPR is violated. This is due to the fact24 KB (3,579 words) - 12:05, 7 July 2021
- Commissioner (Cyprus) - 11.17.001.007.220 (category Article 7(4) GDPR)time tracking system, due to a lack of compatibility with Article 7(4) and Article 35(9) of GDPR. KEO PLC decided to upgrade its ERP system, whose upgrade56 KB (8,913 words) - 16:52, 6 December 2023
- Garante per la protezione dei dati personali (Italy) - 9509515 (category Article 6(1)(b) GDPR)for fraud prevention under Article 6(1)(f) GDPR. Did the company’s policy breach Article 6 or any other articles of the GDPR? The Garante held that the33 KB (5,342 words) - 15:52, 6 December 2023
- APD/GBA (Belgium) - 34/2020 (category Article 6(1) GDPR)12/35 3. Justification 3.1.1. Regarding the purpose limitation findings (Article 5.1 b) GDPR) and the lawfulness of processing (Article 6.1 GDPR) 12. In82 KB (13,250 words) - 16:57, 12 December 2023
- APD/GBA (Belgium) - 136/2023 (category Article 12(6) GDPR)violating Article 5(1)(f) GDPR, Article 5(1)(a) GDPR, Article 5(2) GDPR, Article 12 GDPR, Article 13 GDPR, Article 14 GDPR, Article 24(1) GDPR, and Article58 KB (9,184 words) - 16:49, 12 December 2023
- AEPD (Spain) - PS/00051/2020 (category Article 6(1)(a) GDPR)withdrawal of consent under Article 7(3) GDPR. The Authority also considers the existence of a deletion request under Article 17 GDPR. The AEPD concludes that31 KB (4,853 words) - 13:52, 13 December 2023
- APD/GBA (Belgium) - 136/2022 (category Article 12(3) GDPR)personal data. The DPA held that the controller violated Article 15(1) GDPR and Article 15(3) GDPR and held that the controller had to make a decision regarding19 KB (2,700 words) - 08:49, 29 June 2023
- BAG - 9 AZR 383/19 (category Article 38(3) GDPR)Paragraph 3 Sentence 2 GDPR is in accordance and whether there is a conflict of interest within the meaning of. Article 38 Paragraph 6 Sentence 2 GDPR applies40 KB (6,019 words) - 14:13, 28 November 2023
- DSB (Austria) - 2021-0.101.211 (category Article 6(1)(c) GDPR)and held that “A synopsis of the provisions of Article 9(1)(i) of the GDPR in conjunction with Article 3(1)(1), (1a) and (2) of the EpiG shows that the37 KB (5,745 words) - 13:53, 12 May 2023
- APD/GBA (Belgium) - 75/2023 (category Article 6(1)(f) GDPR)paying profiles. II.4. Article 12(1),(2) and (3), Article 17, Article 19, Article 24(1) and Article 25(1) AVG 63. Article 12 (1) GDPR stipulates that the77 KB (11,604 words) - 08:55, 29 June 2023
- Rb. Gelderland - C/05/391171 / HA RK 21-135 (category Article 6 GDPR)the other grounds from Article 6(1) of the GDPR do not apply. For example, according to [applicant], Article 6(1)(c) of the GDPR does not apply because56 KB (9,287 words) - 16:00, 26 January 2022
- Garante per la protezione dei dati personali (Italy) - 9461168 (category Article 6(1)(e) GDPR)reviewe the security of the data processed by the processor under Article 28(3)(a) and (h) GDPR. For these reasons, the responsibility of the security incident50 KB (8,001 words) - 15:52, 6 December 2023
- GHAL - 200.186.790/01 (category Article 6(1)(b) GDPR)terminated, must be assessed in the light of Article 6 GDPR and not Article 10 GDPR. Article 6(1)(f) GDPR provides a sufficient basis for processing. The50 KB (8,219 words) - 12:42, 4 March 2022
- Garante per la protezione dei dati personali (Italy) - 9856694 (category Article 6 GDPR)cooperation procedure pursuant to Article 56 of the GDPR” (cited note, p. 6). 3. The outcome of the investigation. 3.1. The processing of personal data49 KB (7,758 words) - 15:44, 6 December 2023
- ANSPDCP (Romania) - 03.08.2023 (category Article 15(3) GDPR)fined Med Life SA for the violations of Article 12(4) GDPR and Article 15(3) GDPR. Med Life SA was fined 9,839.6 RON, equivalent to €2,000 EUR. The DPA5 KB (659 words) - 15:14, 13 December 2023
- Commissioner (Cyprus) - 11.17.001.010.045 (category Article 6(1)(f) GDPR)that the article’s publication was in violation of Article 5(1)(c) GDPR, Article 6(1)(f) GDPR, when read in line with Article 85 GDPR. Article 5(1)(c) outlines74 KB (12,375 words) - 10:07, 4 October 2023
- Garante per la protezione dei dati personali (Italy) - 9468523 (category Article 6 GDPR)1, lett. a) and c); 6, par. 1, lett. c) and e), par. 2 and par. 3, lett. b), of the GDPR; as well as art. 2-ter, paragraphs 1 and 3, of the Code (see also22 KB (3,488 words) - 15:52, 6 December 2023
- DSB (Austria) - D550.038/0003-DSB/2018 (category Article 6(1)(f) GDPR)location still covered as a "legitimate interest" in Article 6(1)(f) GDPR? How are penalties under GDPR and the Austrian Data Protection Act ("DSG") to be31 KB (5,161 words) - 14:02, 12 May 2023
- NAIH (Hungary) - NAIH-1091-10/2022 (NAIH-6936/2021) (category Article 6(1) GDPR)mentions a separate legal basis, points a) and f) of Article 6 (1) of the GDPR. Article 6 (1) of the GDPR point a) of the paragraph was expressly referred69 KB (11,255 words) - 10:08, 17 November 2023
- AEPD (Spain) - PS/00405/2020 (category Article 6(1)(a) GDPR)complained party, by the alleged infringement of article 6.1.a) of the RGPD, typified in article 83.5 of the GDPR. EIGHTH: The agreement to initiate this sanctioning20 KB (3,047 words) - 14:35, 13 December 2023
- IP - 7121-1/2020/369 (category Article 6 GDPR)the conditions laid down in Article 7 GDPR. Additionally, in this case, the IP also reiterated the provisions of Article 8 GDPR on conditions applicable to10 KB (1,406 words) - 15:25, 17 March 2022
- AKI (Estonia) - 18.02.2022 (category Article 12(6) GDPR)to Article 11 GDPR, the controller was allowed to request additional information to verify the identity of a data subject pursuant to Article 12(6) GDPR42 KB (5,838 words) - 10:27, 13 December 2023
- APD/GBA (Belgium) - 64/2020 (category Article 6 GDPR)The timeframe can be extended provided that: the duration is no longer than 3 months (ideally); a justification is given; the person agreed to this or at7 KB (937 words) - 17:00, 12 December 2023
- DPC (Ireland) - IN-21-3-1 (category Article 6 GDPR)controller had infringed Article 6(1) GDPR, in addition to violating the principle of data minimisation in Article 5(1)(c) GDPR. Concerning the second issue20 KB (3,069 words) - 18:48, 24 January 2023
- BVwG - W258 2227269-1/14E (category Article 6(1) GDPR)violating Article 5(1) GDPR Article 6 (1) GDPR Article 6(4) GDPR Article 9 GDPR Article 14 GDPR Article 30 GDPR Article 35 GDPR and Article 36 GDPR. The fine47 KB (7,345 words) - 09:41, 10 September 2021
- AP (The Netherlands) - 7.04.2022 (redirect from AP (The Netherlands) - Dutch Tax and Customs Administration fined €3,700,000 for six GDPR violations) (category Article 6(1) GDPR)(possible) fraud. This resulted in a breach of Article 5(1)(a) GDPR and Article 6(1) GDPR in conjunction with Article 8 of the Dutch Personal Data Protection49 KB (7,201 words) - 17:06, 12 December 2023
- HDPA (Greece) - 50/2022 (category Article 6(1)(f) GDPR)limitation under Article 5(1)(a) of the GDPR. 1(b) and the obligation (principle) of accountability under Article 5(1)(b). 2 of the GDPR, that is to say19 KB (2,790 words) - 15:32, 6 December 2023
- AEPD (Spain) - EXP202203956 (category Article 6(1) GDPR)entity has violated article 6 of the GDPR, for carrying out a processing of personal data without legitimacy. II Article 6.1 of the GDPR establishes the assumptions52 KB (8,323 words) - 13:17, 13 December 2023
- Gerechtshof Amsterdam - 200.258.200/01 (category Article 6(1)(f) GDPR)result of which ING suffered loss. 3.3 This decision and the grounds on which it was based are contested by [the appellant]. 3.4 The Court of Appeal will first16 KB (2,462 words) - 12:29, 4 October 2021
- APD/GBA (Belgium) - 38/2021 (category Article 6 GDPR)consent of the 10 complainant (article 6.1 a) of the GDPR combined with article 7 of the GDPR), (2) article 6.1 c) of the GDPR in that the publication results73 KB (11,604 words) - 16:57, 12 December 2023
- Datatilsynet (Denmark) - 2019-432-0024 (category Article 6(1)(c) GDPR)compliant with data protection rules, on the basis of Article 6(2) read in conjunction with Article 6(1)(e) GDPR. Then, the Datatilsynet focused on two specific13 KB (1,936 words) - 16:37, 6 December 2023
- Datatilsynet (Norway) - 20/02225 (category Article 6(1)(f) GDPR)Regulation Article 6 No. 1 letter f.6 On the basis of this, we find it clear that Aquateknikk can be fined for violating Article 5 (2) and Article 6 of the45 KB (7,286 words) - 18:55, 5 March 2022
- Datatilsynet (Denmark) - 2023-432-0016 (category Article 6(1)(a) GDPR)with Article 9(2)(a) GDPR and Article 6(1)(a) GDPR. Thus, the Danish DPA held that the processing was also not following the principles of Article 5(1)46 KB (7,192 words) - 12:37, 19 December 2023
- HDPA (Greece) - 7/2023 (category Article 15 GDPR)consent Article 6.1.b : Legal basis of contract execution Article 6.1.c : Legal basis of compliance with a legal obligation Article 6.1 .d: Legal basis9 KB (1,251 words) - 12:15, 8 May 2023
- Court of Appeal of Brussels - 2022/AR/953 (category Article 6(1)(a) GDPR)the DPA to issue a referral in order to open an ex officio investigation (Article 63(1) of the Law establishing the Belgian DPA). This referral needs to indicate7 KB (681 words) - 10:43, 15 January 2024
- Personvernnemnda (Norway) - 2021-13 (20/01874) (category Article 6(1) GDPR)Privacy Ordinance Article 6 no. 1. In Article 6 no. for the processing of personal data. The relevant basis of treatment in this case is Article 6, paragraph48 KB (7,804 words) - 18:49, 5 March 2022
- APD/GBA (Belgium) - 28/2020 (category Article 6(1)(f) GDPR)be erased and thus also violates Article 17.1(c) AVG. 3.2. With regard to the infringement of Article 6.1 and Article 21.4 of the AVG 29. In its statement27 KB (4,363 words) - 16:56, 12 December 2023
- AEPD (Spain) - PS/00356/2020 (category Article 6(1) GDPR)established in article 6 of the Regulation (EU) 2016/679. " III The documentation in the file provides evidence that the claimed, violated article 6.1 of the26 KB (3,848 words) - 14:31, 13 December 2023
- AEPD (Spain) - PS/00085/2021 (category Article 6(1)(a) GDPR)in article 6 of the Regulation (EU) 2016/679. (…) " III The documentation in the file offers clear indications that the claimed violated article 6 of the28 KB (4,350 words) - 13:57, 13 December 2023
- APD/GBA (Belgium) - 42/2020 (category Article 6(1)(f) GDPR)appeals to that effect legitimate interest (Article 6.1 f) GDPR). 26. In accordance with Article 6.1 f) GDPR and the case law of the Court of Justice of30 KB (4,871 words) - 16:58, 12 December 2023
- OGH - 6Ob127/20z (category Article 4(1) GDPR)held that a lawsuit under Article 79 GDPR regarding the alleged violation of Article 15 GDPR is indeed feasible. Article 79 GDPR is not limited to certain34 KB (5,408 words) - 13:57, 20 September 2021
- APD/GBA (Belgium) - 37/2021 (category Article 6(1)(e) GDPR)condition of necessity is maintained under Article 6.1 b) to f) of the GDPR. The article 6.1 of the GDPR replaces Article 7 of the Directive, without the relevant45 KB (6,780 words) - 16:57, 12 December 2023
- AZOP (Croatia) - Decision 30-12-2021 (category Article 6(1) GDPR)meant to refer to Article 6(1)(f) GDPR instead (like a similar case by the Cyprian DPA). Since the DPA only referred to Article 6(1) GDPR, and did not specify16 KB (2,411 words) - 15:44, 30 October 2023
- APD/GBA (Belgium) - 33/2020 (category Article 6(1) GDPR)by the defendant under Article 6(1) GDPR? Did the controller infringe the data minimisation principle under Article 5(1)(c) GDPR? Did the controller commit39 KB (6,551 words) - 16:56, 12 December 2023
- APD/GBA (Belgium) - 74/2020 (category Article 6(1)(f) GDPR)protection found in Article 5 of the GDPR, and fulfill one of the lawful bases for processing as set out in Article 6 of the GDPR. As the complainants82 KB (12,100 words) - 17:01, 12 December 2023
- AEPD (Spain) - PS/00197/2020 (category Article 6(1)(f) GDPR)Articles 6(1)(b), 5(1)(b) and 5(1)(c) GDPR? The Spanish DPA (AEPD) deemed itself competent under Article 58(2) GDPR in conjunction with Article 47 of the129 KB (21,793 words) - 14:09, 13 December 2023
- ANSPDCP (Romania) - Fine against Estee Lauder Romania (category Article 6 GDPR)ANSPDCP found that Estee Lauder Romania SRL violated Article 6, 7 and 9 GDPR and imposed a fine of EUR 3.000. Share blogs or news articles here! The decision3 KB (290 words) - 15:17, 13 December 2023
- Tietosuojavaltuutetun toimisto (Finland) - 8393/161/2019 (category Article 6(1)(f) GDPR)with Article 5 (1) (a) and Article 6 (1) (f) GDPR. Thus, the controller failed to comply with the accountability principle under Article 5 (2) GDPR. Second111 KB (17,604 words) - 13:08, 3 March 2024
- Datatilsynet (Denmark) - 2019-31-1713 (category Article 23 GDPR)months after the request was made. According to Article 12(3) GDPR the response has to be the latest within 3 months. The DPA considered that it had no competence33 KB (5,177 words) - 16:23, 6 December 2023
- AEPD (Spain) - PS/00303/2020 (category Article 6(1) GDPR)established in article 6 of the Regulation (EU) 2016/679. " IV The documentation in the file provides evidence that the claimed, violated article 6.1 of the29 KB (4,480 words) - 14:27, 13 December 2023
- AEPD (Spain) - PS/00365/2019 (category Article 31 GDPR)violation of article 6.1. RGPD, typified in article 83.5.a), and article 31, in relation to article 58.1.e), both of the RGPD, typified in article 83.5.e) of86 KB (14,295 words) - 14:32, 13 December 2023
- APD/GBA (Belgium) - 36/2021 (category Article 6(1) GDPR)approved appeal of Article 5(1)(a), Article 12(1), Article 13(1) and Article 13(2). The appeal for Article 5(1)(c), Article 6(1) and Article 8 GDPR was not approved62 KB (9,417 words) - 16:57, 12 December 2023
- AEPD (Spain) - EXP202208230 (category Article 28(3) GDPR)violation of article 28.2 typified in Article 83.4 a) GDPR. SIXTY THOUSAND EUROS (€60,000) for alleged violation of article 28.3 typified in Article 83.4 a)45 KB (6,904 words) - 13:12, 13 December 2023
- CE - N° 428451 (category Article 6 GDPR)accordance with Article L. 6113-7 of the French Public Health Code and the decree of 26 December 2018 comply with Articles 6, 9(3) and 25 GDPR? To reach the35 KB (5,153 words) - 16:29, 20 May 2021
- AEPD (Spain) - PS/00308/2020 (category Article 6(1) GDPR)third party, breach Article 6(1) GDPR? The Spanish DPA (AEPD) referred to the principle of lawfulness, fairness and transparency (Article 5(1)(a)), as well25 KB (4,016 words) - 14:27, 13 December 2023
- HDPA (Greece) - 44/2019 (category Article 6(1) GDPR)internal compliance and accountability according to Article 5(1) GDPR, Article 5(2) GDPR and Article 6(1) GDPR. Since the company had totally ignored the its127 KB (21,184 words) - 15:39, 6 December 2023
- AEPD (Spain) - PS/00135/2021 (category Article 6(1) GDPR)violated Article 6(1)GDPR, for processing personal data without a legal basis. Hence, the AEPD decided to fine Telefónica for the violation of Article 6(1)GDPR30 KB (4,631 words) - 13:00, 13 December 2023
- AKI (Estonia) - 2.1.-1/21/129 (category Article 6 GDPR)reply. The AKI reminded the defendant of its obligation under Article 13 GDPR and Article 14 GDPR to inform the data subject in a concise, clear, comprehensible22 KB (3,237 words) - 12:25, 17 June 2022
- Rb. Rotterdam - 9436020 \ CV EXPL 21-30289 (category Article 6 GDPR)data is a form of processing as referred to in the GDPR (article 4 sub 2 GDPR). Article 6 of the GDPR provides that the processing of personal data is only19 KB (2,828 words) - 10:09, 18 March 2022
- AEPD (Spain) - PS/00028/2022 (category Article 5(1)(f) GDPR)entity has violated article 6 of the GDPR, for carrying out a processing of personal data without legitimacy. II Article 6.1 of the GDPR establishes the assumptions58 KB (9,301 words) - 12:39, 13 December 2023
- GHAL - 200.256.426 (category Article 6(1)(f) GDPR)on legitimate interests according to Article 6(1)(f) GDPR and that Ziggo had to comply with Article 6(4)(d) GDPR. The Court found that DFW had a legitimate40 KB (6,777 words) - 16:28, 15 March 2022
- VG Potsdam - VG 3 K 1458/19 (category Article 17 GDPR)the danger concepts in Article 6 Paragraph 1 Letter e SGK and Article 6 Paragraph 1 Letter d SGK in conjunction with (now) Article 24 Paragraph 1 Letter23 KB (3,560 words) - 14:17, 21 February 2024
- Datatilsynet (Denmark) - 2019-32-0709 (category Article 6(1)(a) GDPR)question in accordance with Article 6 (1). Travel cards have also referred to Article 17 (1) (b) of the Data Protection Regulation. 3, letter b, according to24 KB (3,763 words) - 16:23, 6 December 2023
- Commissioner (Cyprus) - 11.17.001.008.001 (category Article 5(1)(f) GDPR)hand can not verify its legalitytraining. 3.6.4. In view of what was mentioned in paragraphs 3.6.1. - 3.6.3. above, the DefendantThe perpetrator was obliged61 KB (9,412 words) - 16:52, 6 December 2023
- AEPD (Spain) - PS/00168/2020 (category Article 6(1) GDPR)violation of Article 6(1) GDPR? AEPD considered that the documentation provided offers evidence that Vodafone violated Article 6(1) of the GDPR, by processing22 KB (3,568 words) - 14:06, 13 December 2023
- AEPD (Spain) - PS/00348/2020 (category Article 6(1) GDPR)claimant’s signature constitute a breach under the GDPR? The AEPD held that Vodafone violated Article 6(1) GDPR, as they had processed the claimant’s data without38 KB (5,648 words) - 14:31, 13 December 2023
- APD/GBA (Belgium) - 11/2019 (category Article 6(4) GDPR)of the provisions as set out in Article 95 § 2 and Article 98 of the ICA. They are also informed, pursuant to Article 99 of the ICA, of the time limits24 KB (3,844 words) - 16:51, 12 December 2023
- AEPD (Spain) - EXP202205820 (category Article 6 GDPR)the provisions of article 6 of the GDPR. C/ Jorge Juan, 6 www.aepd.es 28001 – Madrid sedeagpd.gob.es 14/20 Article 4 of the same GDPR defines "processing"61 KB (9,700 words) - 13:21, 13 December 2023
- APD/GBA (Belgium) - 12/2019 (category Article 6(1)(a) GDPR)implementing the ePrivacy Directive and Articles 6(1)(a) and 7 GDPR, in the lights of Article 4(11) and Recital 32 GDPR. Following this report, the GBA issued a107 KB (17,697 words) - 16:52, 12 December 2023
- Court of Appeal of Brussels - 2021/AR/205 (category Article 6 GDPR)Art 6 AVG - ex-contractual processing plea 6: the right to object - Article 21(1) AVG plea 7: Article 12(3) TFEU - no infringement plea 8: Article 20 AVG-Right92 KB (14,873 words) - 09:03, 20 August 2021
- APD/GBA (Belgium) - 48/2021 (category Article 6 GDPR)required by Article 6 GDPR. In doing so, the defendant was guilty of a breach of Article 6 of the GDPR. This breach is combined with a breach of Article 5.1.a)43 KB (6,670 words) - 16:58, 12 December 2023
- AEPD (Spain) - PS/00385/2020 (category Article 6(1)(a) GDPR)their privacy policy in line with Article 6(1)(a) GDPR within a month. The AEPD also held that URLs 1-4 breached Article 22(2) of the Law 34/2002 (LSSI)55 KB (8,967 words) - 14:33, 13 December 2023
- AEPD (Spain) - TD/00044/2021 (category Article 28(3) GDPR)of these data (hereinafter, GDPR); and in article 47 of the LOPDGDD. SECOND: In accordance with the provisions of article 55 of the RGPD, the Agency Spanish22 KB (3,465 words) - 13:30, 13 December 2023
- CNPD (Luxembourg) - Délibération n° 18/FR/2022 (category Article 6(1)(c) GDPR)processing was therefore in breach of Article 5(1)(a) and Article 6(1)(c) of the GDPR. The DPA also ruled out Article 6(1)(f) on the grounds of domestic law:76 KB (11,147 words) - 16:58, 6 December 2023
- Court of Appeal of Brussels - 2020/AR/1111 (category Article 3(1) GDPR)ofcontroller (article 4.7 of the GDPR), the scope of the GDPR (article3.1 of the GDPR), the right to erasure (article 17 of the GDPR) and its powers (article 58.2of37 KB (5,919 words) - 08:54, 20 August 2021
- OGH - 6Ob56/21k (request for preliminary ruling under Article 267 TFEU) (category Article 6(1)(a) GDPR)requirements of Article 6(1)(a) in conjunction with Article 7 GDPR, which cannot be superseded by relying on Article 6(1)(b) GDPR? Is Article 5(1)(c) GDPR (data122 KB (20,253 words) - 08:17, 19 August 2021
- APD/GBA (Belgium) - 138/2022 (category Article 6(1)(f) GDPR)directly on the basis of the GDPR, not the register assessed on the basis of Article 30(1) of the GDPR. II.3. Article 6(1)(f) of the GDPR 49. Above, the Disputes43 KB (6,274 words) - 08:57, 29 June 2023
- CNPD (Luxembourg) - Délibération n°37FR/2021 (category Article 38(6) GDPR)(DPO) under Article 37(7) GDPR, and of its obligation to ensure that its DPO does not have any conflict of interests under Article 38(6) GDPR. In 2018, the26 KB (3,862 words) - 17:41, 25 June 2022
- DPC (Ireland) - Meta Platforms Ireland Limited (Facebook) - IN-18-5-5 (category Article 6 GDPR)of Article 6(1)(b) GDPR, and to bring its processing into compliance with Article 6(1) GDPR. Furthermore, pursuant to Articles 58(2)(i) and 83 GDPR, and21 KB (3,005 words) - 14:16, 1 February 2023
- AEPD (Spain) - PS/00341/2020 (category Article 6(1) GDPR)principles are found under Article 5(1)(a) and Article 5(2) GDPR respectively]. The Spanish DPA even made reference to Recital 40 GDPR on the legality of processing32 KB (4,831 words) - 14:31, 13 December 2023
- Datatilsynet (Norway) - 20/02274 (category Article 6(1)(f) GDPR)controller violated Article 6(1)(f) GDPR when accessing the employee's email account and emails. Further, the Datatilsynet breached Article 21 GDPR since the controller47 KB (7,661 words) - 18:54, 5 March 2022
- AEPD (Spain) - PS/00315/2020 (category Article 28(3)(g) GDPR)A76539030, for a infringement of article 28.3.g) of the RGPD, in accordance with article 83.4 b) of the C / Jorge Juan, 6 www.aepd.es 28001 - Madrid sedeagpd62 KB (10,401 words) - 14:35, 21 November 2023
- AEPD (Spain) - PS/00430/2020 (category Article 6(1) GDPR)his/her consent. The DPA first outlined Article 6(1)(a) and (b) GDPR, Articles 4(11) GDPR on consent, as well as Article 6 of the Spanish Data Protection Law31 KB (4,738 words) - 14:39, 13 December 2023
- OGH - 9Ob38/19g (category Article 6(1)(a) GDPR)infringed Article 7 (3) of the DSGVO. In addition, the lack of transparency (§ 6 para 3 KSchG) also resulted from the infringement of Article 12 in conjunction200 KB (33,233 words) - 09:49, 14 December 2023
- AEPD (Spain) - EXP202200999 (category Article 6(1) GDPR)processing is based on consent under Article 6(1)(a) GDPR, the consent must meet the requirements of, among others, Article 7 GDPR. The DPA observed deficiencies51 KB (7,867 words) - 13:10, 13 December 2023
- APD/GBA (Belgium) - 157/2023 (category Article 21(2) GDPR)answered in accordance with the requirements of Article 12 GDPR and within the time limit set in Article 12(3) GDPR. As the complainant continued to receive marketing17 KB (2,723 words) - 16:34, 26 January 2024
- AEPD (Spain) - PS/00239/2022 (category Article 15 GDPR)of article 17 of the GDPR. X Classification of the infringement of article 17 of the GDPR The aforementioned infringement of article 17 of the GDPR supposes60 KB (9,630 words) - 12:34, 13 December 2023
- Gerechtshof Amsterdam - 200.280.852/01 (category Article 6(1)(e) GDPR) (section Was the introduction of Proctorio compliant with the GDPR?)processing is based on Article 6(1)(e) of the GDPR. This data processing also complies with the due care requirements set by the GDPR. There is therefore53 KB (8,177 words) - 12:30, 4 October 2021
- APD/GBA (Belgium) - 04/2021 (category Article 6 GDPR)processing (Article 4, point 11, Article 6 (1) in conjunction with Article 7 GDPR) 121. With regard to the lawfulness of the processing (art. 6 GDPR), the defendant113 KB (18,732 words) - 16:50, 12 December 2023
- DSB (Austria) - 2021-0.347.702 (category Article 6(1)(f) GDPR)or by a third party. The court used Article 9(2)(f) GDPR to interpret legitimate interests under Article 6(1)(f) GDPR as including the establishment, exercise25 KB (3,875 words) - 10:36, 11 January 2024
- Datatilsynet (Norway) - 20/04401 (category Article 6(1) GDPR)interest" as a basis for treatment. 5.2. Article 6 (1) (f) of the Privacy Regulation - "legitimate interest" Article 6 (1) (f) requires that the collection40 KB (5,988 words) - 19:04, 5 March 2022
- AKI (Estonia) - 2.1.-1/23/2891-5 (category Article 6(1)(a) GDPR)it was not possible to rely on Article 6(1)(a) GDPR. Secondly, the DPA recalled that, according to Article 6(1)(f) GDPR, processing of personal data on23 KB (3,657 words) - 11:23, 17 April 2024
- AEPD (Spain) - PS/00139/2020 (category Article 6(1) GDPR)procedure. II Article 6.1 of the RGPD, establishes the cases that allow to consider The processing of personal data is lawful. C/ Jorge Juan, 6 www.aepd.es20 KB (3,086 words) - 14:04, 13 December 2023
- Commissioner (Cyprus) - 11.17.001.009.232 (category Article 12(3) GDPR)breaching Article 12(3) GDPR, since it failed to notify the data subject that her erasure request was satisfied, as well as Article 24(1) GDPR, given that17 KB (2,515 words) - 11:17, 6 February 2024
- AEPD (Spain) - PS/00405/2019 (category Article 6(1) GDPR)significant (Article 83(2)(b) GDPR). - basic personal identifiers were affected (name, identification number, the line identifier) (Article 83(2)(g) GDPR). The24 KB (3,887 words) - 14:34, 13 December 2023
- APD/GBA (Belgium) - 51/2023 (category Article 5(1)(b) GDPR)obligation under Article 37(7) GDPR. The DPA ordered the controller to comply with his obligations under Article 13(1)(b) GDPR and Article 37(7) GDPR and to publish18 KB (2,611 words) - 12:45, 16 June 2023
- Tietosuojavaltuutetun toimisto (Finland) - 3843/163/20 (category Article 6 GDPR)DPA held that the controller had violated Article 5(1)(a) GDPR, Article 5(1)(c) GDPR, Article 6 GDPR and Section 3 of the Finnish Act on the Protection of39 KB (6,038 words) - 17:39, 29 April 2024
- APD/GBA (Belgium) - 73/2020 (category Article 6 GDPR)basis the data are processed in accordance with Article 6 GDPR. This constitutes a breach of Article 6 GDPR. The data subject indicates that they had not93 KB (14,040 words) - 17:00, 12 December 2023
- Garante per la protezione dei dati personali (Italy) - 9446730 (category Article 6 GDPR)of the data controller in accordance with Article 6.1(f) and recital 47 of the Regulation' (footnote cit., p. 3); e. in response to the requests for access34 KB (5,420 words) - 15:51, 6 December 2023
- VG Mainz - 1 K 584/19.MZ (category Article 9(1) GDPR)absence of consent under Art. 6(1)(a) GDPR, a balance of interests according to Art. 6(1)(f) GDPR is required. The legitimate interests pursued by the plaintiff58 KB (9,665 words) - 08:51, 25 November 2020
- AEPD (Spain) - PS/00003/2020 (category Article 5(1)(c) GDPR)of public space respect Article 5 (1) (c) GDPR? The AEPD held that the installation of a video surveillance system under Article 22 LOPDGDD must always50 KB (7,524 words) - 13:44, 13 December 2023
- AEPD (Spain) - PS/00198/2020 (category Article 6(1) GDPR)established in article 6 of theRegulation (EU) 2016/679. "IIIThe documentation in the file provides evidence that theclaimed, violated article 6.1 of the RGPD24 KB (3,769 words) - 14:10, 13 December 2023
- APD/GBA (Belgium) - 54/2021 (category Article 6 GDPR) (section Legal basis of processing under Article 6 of the GDPR)is maintained under Article 6.1 b) to f) of the GDPR and therefore in Article 6.1.c) invoked in the species. Article 6.1 of the GDPR in fact reproduces73 KB (11,238 words) - 16:59, 12 December 2023
- AEPD (Spain) - PS/00089/2021 (category Article 6(1)(a) GDPR)Juan, 6 www.aepd.es 28001 - Madrid sedeagpd.gob.es 3/3 SECOND: NOTIFY this resolution to the claimant. In accordance with the provisions of article 50 of11 KB (1,490 words) - 13:58, 13 December 2023
- APD/GBA (Belgium) - XX/2021 (category Article 60 GDPR)personal data under Article 17 GDPR. On 21 September 2021, the controller confirmed the deletion, as required by Article 12(3) and (4) GDPR. However, the complainant17 KB (2,189 words) - 12:34, 3 August 2022
- AEPD (Spain) - PS/00179/2020 (category Article 32(1) GDPR)exceptions from those contained in art. 3. 4 GDPR. In this sense, those provided for in art. 34.3 a) and b). C / Jorge Juan, 6 www.aepd.es 28001 - Madrid sedeagpd100 KB (16,401 words) - 14:07, 13 December 2023
- Gerechtshof Amsterdam - C/13/640898/HARK17-386 (category Article 6(1)(c) GDPR)Data in the External Referral Register. (…)” 3 Review 3.1 In an introductory application pursuant to Article 46 of the Personal Data Protection Act (Wbp)26 KB (4,225 words) - 16:00, 15 March 2022
- AEPD (Spain) - PS/00026/2021 (category Article 21 GDPR)processor, Vamavi Phone SL, had violated Article 48(1) LGT, Article 21 GDPR in link with Article 23 LOPDGDD and Article 28 GDPR by making a commercial call on behalf33 KB (5,185 words) - 13:48, 13 December 2023
- AEPD (Spain) - TD/00261/2020 (category Article 12 GDPR)articles 12.5 and 15.3 of Regulation (EU) 2016/679 and in the sections 3 and 4 of article 13 of this organic law. " FIFTH: Article 15 of the RGPD provides23 KB (3,523 words) - 14:46, 13 December 2023
- APD/GBA (Belgium) - 25/2020 (category Article 6 GDPR)the basis of article 92, 3° of the WOG. 14. The inspection report shall identify potential breaches of Article 5(1). 2 of the AVG, Article 6 of the AVG,84 KB (14,035 words) - 16:56, 12 December 2023
- AEPD (Spain) - PS/00010/2020 (category Article 6(1)(a) GDPR)lawful bases of Article 6(1)(a) and 6(1)(b) in particular, stating that the actions of the respondents were in breach of Article 6(1) GDPR because the complainant's22 KB (3,523 words) - 13:45, 13 December 2023
- AEPD (Spain) - EXP202201247 (category Article 6 GDPR)violation of article 6.1 of the RGPD, typified in Article 83.5 of the GDPR. C/ Jorge Juan, 6 www.aepd.es 28001 – Madrid sedeagpd.gob.es 3/6 FIFTH: The aforementioned17 KB (2,350 words) - 13:17, 13 December 2023
- Court of Appeal of Brussels - 2019/AR/1006 (category Article 16 GDPR)incorrect applies Article 12.3 of the AVG. However, this is not correct. 33. Article 12.3 of the GDPR reads (in its relevant parts): ''Art. 12.3 The controller59 KB (9,290 words) - 09:10, 5 May 2024
- AEPD (Spain) - PS/00484/2020 (category Article 6(1)(a) GDPR)messages. Is this a violation of Article 6(1)(a) GDPR? The AEPD held that this behaviour was a violation of Article 6(1)(a) GDPR and fined Vodafone €100,00027 KB (4,189 words) - 14:44, 13 December 2023
- GHAL - 200.254.914 (category Article 6(1)(f) GDPR)95/46/EC) on the same date (see Article 94 GDPR). That the initiating petition in this case dates from 22 May 2018 and that Article 48, paragraph 10 of the (Dutch)20 KB (2,722 words) - 10:04, 14 December 2023
- Datatilsynet (Denmark) - 2019-32-0988 (category Article 9(3) GDPR)the basis of Article 9 (1) of the Data Protection Ordinance [1]. 2, letter h, cf. the Data Protection Act [2] § 7, para. 3, and Article 6, para. 1, letter45 KB (7,151 words) - 16:24, 6 December 2023
- AEPD (Spain) - PS/00280/2022 (category Article 28(3) GDPR)subjects and the obligations and rights of the controller'), as per Article 28(3) GDPR, was lacking. Additionally, the DPA highlighted that such contract30 KB (4,551 words) - 11:51, 9 February 2023
- AEPD (Spain) - PS/00205/2021 (category Article 6(1) GDPR)constitutes personal data according with Article 4(1) GDPR therefore its processing falls within the scope of GDPR. The DPA also analysed whether the controller28 KB (4,527 words) - 12:35, 13 December 2023
- AEPD (Spain) - PS/00151/2020 (category Article 5(1)(c) GDPR)of the duty of information as per article 13 GDPR. The DPA imposed thus a fine of €1000 for violating Article 13 GDPR. Share your comments here! Share blogs28 KB (4,525 words) - 14:06, 13 December 2023
- DSB (Austria) - 2020-0.816.655 (category Article 3 GDPR)information pursuant to Article 15 of the GDPR as alleged by the respondent - was alleged. However, Article 14 (1) to (4) of the GDPR do not apply if the complainant28 KB (4,230 words) - 13:53, 12 May 2023
- GHDHA - 200.274.807 / 01 (category Article 6(1)(f) GDPR)her life. Her objection to processing follows from Article 21(1) GDPR. ING argues that Article 21(1) GDPR cannot be relied on in this case because it applies29 KB (4,710 words) - 12:25, 4 October 2021
- AEPD (Spain) - EXP202210237 (category Article 6(1) GDPR)fact that the processing of the controller relied on Article (6)(1)(b) GDPR and Article 6(1)(c) GDPR as legal basis affects the holding of the DPA since32 KB (4,780 words) - 10:44, 13 December 2023
- BVwG - W274 2232028-1/3E (category Article 6 GDPR)is only determined by Article 5 et seqq. GDPR. A violation of Article 13 or 14 GDPR can be fined under Article 83(5) GDPR but it does not affect the lawfulness32 KB (5,232 words) - 09:40, 10 September 2021
- APD/GBA (Belgium) - 03/2021 (category Article 6(1)(f) GDPR)fulfilled. The school breaches Article 6(1)(b) in combination with Article 6(4) and Article 6(1) Articles 24 and 25 GDPR Furthermore, as the school continued32 KB (4,880 words) - 16:50, 12 December 2023
- AEPD (Spain) - PS/00009/2020 (category Article 6(1) GDPR)established in article 6 of theRegulation (EU) 2016/679. "IIIThe documentation in the file provides evidence that theclaimed, violated article 6.1 of the RGPD27 KB (4,150 words) - 13:45, 13 December 2023
- AEPD (Spain) - PS/00333/2019 (category Article 5 GDPR)infringement of article 5.1(b), as defined in Article 83(5)(a) and considered for the purposes of the statute of limitations in Article 72(1)(a), a fine16 KB (2,625 words) - 14:29, 13 December 2023
- AP (The Netherlands) - 14.01.2022 (category Article 12(6) GDPR)2019 Pursuant to article 58, second paragraph, opening words and article 83, fifth paragraph, of the GDPR, read in in connection with article 14, third paragraph50 KB (7,656 words) - 17:05, 12 December 2023
- VG Hannover - 10 A 502/19 (category Article 6(1)(b) GDPR)which the person responsible is subject. In contrast to Article 6 (1) (b) GDPR, Article 6 (1) (c) GDPR with “legal obligation” does not mean a contractual41 KB (6,779 words) - 12:35, 24 November 2021
- AEPD (Spain) - EXP202201681 (category Article 38(6) GDPR)which that article 38, section 6, of the GDPR is registered, it should be noted that, according to article 39, paragraph 1, letter b) of the GDPR, the protection195 KB (30,495 words) - 12:40, 13 December 2023
- AEPD (Spain) - PS/00028/2020 (category Article 6 GDPR)NIF J10460640 , for aviolation of article 6 of the RGPD, typified in article 83.5 of the RGPD, in relation towith article 72.1 b) of the LOPDGDD, a fine of14 KB (2,075 words) - 13:48, 13 December 2023
- EFTA Court - Joined Cases E-11/19 and E-12/19 (category Article 57(3) GDPR)point (e) of Article 6(1) of the GDPR. 48 If a data subject has objected to the data processing, it follows from Article 21(1) of the GDPR that compelling59 KB (8,242 words) - 10:47, 17 March 2021
- Garante per la protezione dei dati personali (Italy) - 9861827 (category Article 6 GDPR)violated Article 12 GDPR, as it did not facilitate the data subject´s exercise of their rights, especially the right to erasure under Article 17 GDPR. In view87 KB (14,525 words) - 15:45, 6 December 2023
- AEPD (Spain) - PS/00068/2020 (category Article 6(1) GDPR)treatment established in article 6 of theRegulation (EU) 2016/679. ”C / Jorge Juan, 6www.aepd.es28001 - Madridsedeagpd.gob.es Page 6 6/13IVThe documentation27 KB (4,106 words) - 13:55, 13 December 2023
- AEPD (Spain) - EXP202100282 (category Article 6(1) GDPR)for the alleged violation of article 6.1. GDPR typified in article 83.5.a) of the aforementioned RGPD. C / Jorge Juan, 6 www.aepd.es 28001 - Madrid sedeagpd27 KB (4,108 words) - 13:32, 13 December 2023
- Garante per la protezione dei dati personali (Italy) - 9861249 (category Article 6 GDPR)should have applied Article 35 GDPR. In light of the above, the Italian DPA used its corrective powers under Article 58(2)(c) and 83 GDPR and fined the controller87 KB (14,104 words) - 15:45, 6 December 2023
- AEPD (Spain) - TD/00233/2020 (category Article 17 GDPR)data is inaccurate or incomplete. C / Jorge Juan, 6 www.aepd.es 28001 - Madrid sedeagpd.gob.es 3/6 3. The cancellation will lead to the blocking of the17 KB (2,670 words) - 14:46, 13 December 2023
- AEPD (Spain) - PS/00340/2019 (category Article 6(1)(e) GDPR)as a data subject under Article 21(1) GDPR had been violated by the PAR. Did Mrs AAA have a right to object under Article 21 GDPR? Had the PAR infringed23 KB (3,554 words) - 14:31, 13 December 2023
- GHAL - 200.307.462 (category Article 10 GDPR)even allowed to process the data under Article 10 GDPR. The Court rejected an argument from Brein that article 6:162 BW could be used besides Articles 3228 KB (4,573 words) - 10:04, 14 December 2023
- NAIH (Hungary) - NAIH/2020/193/8 (category Article 6(1) GDPR)been deleted by the employer upon request pursuant to Article 16, Article 17 and Article 5(1)(d) GDPR (inaccuracy of personal data). Therefore, the employer58 KB (9,413 words) - 10:11, 17 November 2023
- BVwG - W256 2240235-1 (category Article 6(1)(e) GDPR)interests under Article 6(1)(f) GDPR. The data subject was heard on this statement and filed a submission, arguing that Article 6(1)(f) GDPR does not apply33 KB (5,154 words) - 11:08, 21 January 2022
- AEPD (Spain) - PS/00008/2020 (category Article 6(1) GDPR)established in article 6 of the Regulation (EU) 2016/679. ” IV The documentation in the file offers evidence that the claimed, violated article 6.1 of the RGPD27 KB (4,408 words) - 13:45, 13 December 2023
- RvS - 202002066/1/A3 (category Article 15(3) GDPR)has fulfilled the purpose of Article 15 of the GDPR. [Applicant] cannot therefore derive any right from Article 15 of the GDPR to a copy of the documents22 KB (3,354 words) - 09:23, 18 February 2022