Search results
From GDPRhub
- freedoms of individuals", as stated in Article 35(1) and further elucidated in Article 35(3) and Article 35(4) GDPR. The WP29 developed a list of criteria52 KB (7,297 words) - 08:05, 18 July 2023
- Article 42 GDPR (category GDPR Articles) (section (7-8) What processing operations can be certified under the GDPR)to Article 35(7)(d) GDPR has been conducted, if applicable; and the technical and organizational measures put in place pursuant to Article 32 GDPR. However27 KB (2,452 words) - 14:26, 28 July 2023
- Article 36 GDPR (category GDPR Articles)See, Article 35(7)(a) GDPR. Furthermore, the DPO will need to act as contact point throughout the consultation process. See Article 39(1)(e) GDPR. With31 KB (3,646 words) - 08:51, 21 July 2023
- Datatilsynet (Denmark) - 2020-431-0061 (Helsingor decision no. 3) (category Article 35(7) GDPR)in line with the GDPR. Further, the DPA held that the new documentation is not in line with Article 35(1) and 35(7), as well as Article 36(1). Thus, the117 KB (18,075 words) - 10:19, 12 September 2022
- HDPA (Greece) - 4/2022 (category Article 35(7) GDPR)under Article 35(7) GDPR, for not complying with the principle of transparency under Article 5(1) GDPR and for not anonymising the data under Article 25(1)11 KB (1,274 words) - 10:37, 23 February 2022
- DSB (Austria) - 2021-0.024.862 (category Article 35(7)(d) GDPR)that Article 36(1) GDPR provides for a duty to consult if two conditions are met. First, a data protection impact assessment under Article 35 GDPR must38 KB (5,821 words) - 13:39, 12 May 2023
- APD/GBA (Belgium) - 24/2021 (category Article 35(7) GDPR)especially: 1) Violation of article 4.11 GDPR read in conjunction with article 6.1 a) GDPR as well Articles 7.1 and 7.3 GDPR: the Inspection Service determines110 KB (18,238 words) - 16:56, 12 December 2023
- Court of Appeal of Brussels - 2022/AR/556 (category Article 35(7) GDPR)carried out before (Article 35(1) of the GDPR) and was not carried out in a manner that complied with the criteria of Article 35(7), which considerably83 KB (13,694 words) - 09:53, 14 December 2023
- Persónuvernd (Island) - 2022020363 (category Article 35(7) GDPR)and thus failed to fulfil its obligations under Article 5(1) GDPR, Article 24(1) GDPR and Article 28(1) GDPR. Second, the DPA found that, since the data processing142 KB (22,881 words) - 12:42, 16 January 2024
- NIQB - Williams, Re Application for Judicial Review (2022) NIQB 12 (category Article 35(7) GDPR)United Kingdom Relevant Law: Article 5(1)(a) GDPR Article 6(1)(f) GDPR Article 9(2) GDPR Article 35(3) GDPR Article 35(7) GDPR Section 8 Data Protection Act3 KB (214 words) - 12:26, 2 March 2022
- APD/GBA (Belgium) - 48/2022 (category Article 35(7)(b) GDPR) (section 2. The legal basis (Articles 6 and 9 GDPR))13(2)(e), 35(1), 35(3) and 35(7)(b) GDPR. It also fined the medical service €20,000 for violation of Articles 5(1)(c), 6(1)(e), 9(2)(g), 35(3) and 35(7)(b) GDPR7 KB (874 words) - 16:47, 6 April 2022
- AP (The Netherlands) - Decision of 18 December 2023 (category Article 35(7) GDPR)be equivalent to a DPIA under Article 35 GDPR. For this reason, the AP held that the controller violated Article 35(1) GDPR. In this, the AP considered it55 KB (8,007 words) - 09:50, 24 January 2024
- APD/GBA (Belgium) - 165/2023 (category Article 35(7) GDPR)Articles 32(1) and 32(2) GDPR. The DPA also identified a breach of Article 35(1), Article 35(2), Article 35(3) and Article 35(7) GDPR since, even though the67 KB (9,908 words) - 11:09, 10 January 2024
- Tietosuojavaltuutetun toimisto (Finland) - 1150/161/2021 (category Article 35(7) GDPR)2016/679 Article 25 (1), Article 32 (1) and (2), Article 33 (1) and (5), Article 34 (1), Article 35 (1) and (7), Article 35 (3) (b), Article 58 (2), Article153 KB (24,570 words) - 15:11, 26 March 2024
- APD/GBA (Belgium) - 47/2022 (category Article 35(7) GDPR) (section 7. Data protection by default and data minimisation)the meaning of Article 9 of the GDPR must indeed be based on Article 9.2 of the GDPR, read in conjunction with Article 6.1 of the GDPR. 24 This has been207 KB (31,357 words) - 14:21, 8 June 2022
- Articles 4(11), 6(1)(a), 7 and 8 GDPR. For the definition of 'consent', see the more commentary under Article 6(1)(a) GDPR and Article 7 GDPR. For the definition125 KB (16,328 words) - 16:01, 8 March 2024
- Article 17 GDPR (category GDPR Articles) (section (i) Erasure following objection under Article 21(1))provided for in Article 6(1)(a) GDPR or, as the case may be, Article 9(2)(a) GDPR, and consent is withdrawn according to Article 7(3) GDPR, data must be61 KB (8,488 words) - 15:47, 18 March 2024
- of enforcing the GDPR in Spain. Its head office is in Madrid. The requirement to have a data protection authority stems from Article 44 of the Spanish4 KB (386 words) - 15:29, 3 September 2021
- Article 15 GDPR (category GDPR Articles) (section Additional information under Article 15(1)(a) to (h))further details see Article 14(1)(d) GDPR. Similar to the ex-ante information in Article 13(1)(e) and 14(1)(e) GDPR, Article 15(1)(c) GDPR requires the controller73 KB (9,896 words) - 15:46, 18 March 2024
- are dealt with in Article 12(6) GDPR. It is unclear why Article 12(2) GDPR refers to Articles 15 to 22 GDPR, while Article 11(2) GDPR only refers to Articles76 KB (11,304 words) - 08:37, 4 March 2024