Filtered (327)
Filters
Search
Type
Country
Categories
Show (327)
Cancel
Personal Data Breach Management and Reporting Toolkit Tracker

Data Breaches

Requests for Access Toolkit Tracker

Access Requests (DSAR)

Records Management Toolkit Tracker

Data Retention, Personal Data Collection, Records of processing Activities (ROPA)

Personal Data Breach Management and Reporting Toolkit Tracker – more information about the Toolkit by UK ICO

Data Breaches

Records Management Toolkit Tracker – more information about the Toolkit by UK ICO

Data Retention, Personal Data Collection, Records of processing Activities (ROPA)

Requests For Access Toolkit Tracker – more information about the Toolkit by UK ICO

Access Requests (DSAR)

Polish National Personal Data Protection Office (UODO)-National Prosecutor’s Office (9/2/2024)

Consent, Controllers and Processors, Data Breaches, Lawfulness of Processing, Principles, Sensitive Data

Spanish Data Protection Authority (aepd)-ALTERNATIVA CORELLANA INDEPENDIENTE (6/26/2024)

Administratives Measures, Liability and Remedies

Italian Data Protection Authority (Garante)-Medical association (6/20/2024)

Access Requests (DSAR), Data Subjects Rights

Italian Data Protection Authority (Garante)-Rossi Carta S.r.l. (4/24/2024)

Access Requests (DSAR), Controllers and Processors, Data Protection Officer (DPO), Data Subjects Rights, Lawfulness of Processing

Spanish Data Protection Authority (aepd)-Vodafone España, S.A.U. (7/18/2024)

Administratives Measures, Liability and Remedies

Spanish Data Protection Authority (aepd)-Private individual (4/15/2024)

Administratives Measures, Liability and Remedies

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-BEST ELAN ONLINE SRL (8/6/2024)

Administratives Measures, Liability and Remedies

Hellenic Data Protection Authority (HDPA)-METRO SA (6/27/2024)

Access Requests (DSAR), Controllers and Processors, Data Subjects Rights, Technical and Organisational Measures (TOMs)

Cypriot Data Protection Commissioner-Aylo Social LTD (2/8/2024)

Access Requests (DSAR), Data Subjects Rights

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Corint Logistic SRL. (5/30/2024)

Access Requests (DSAR), Data Subjects Rights, Lawfulness of Processing, Principles, Right to Object, Sensitive Data

Italian Data Protection Authority (Garante)-Azzurro Club Hotels S.r.l. (5/9/2024)

Access Requests (DSAR), Consent, Data Subjects Rights, Lawfulness of Processing

Spanish Data Protection Authority (aepd)-PILLOW HOTELS, S.L. (5/30/2024)

Controllers and Processors, Data Breaches, Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-CONSULTORÍA PERITACIONES ALMERIENSES, S.L (4/19/2024)

Administratives Measures, Liability and Remedies

Spanish Data Protection Authority (aepd)-DELPASO CAR HIRE, S.L.U. (4/30/2024)

Access Requests (DSAR), Data Subjects Rights

Italian Data Protection Authority (Garante)-Banca di Credito Cooperativo Appulo Lucana soc. cooperativa (3/7/2024)

Access Requests (DSAR), Data Subjects Rights

Polish National Personal Data Protection Office (UODO)-Association (4/30/2024)

Controllers and Processors, Data Breaches

Spanish Data Protection Authority (aepd)-CLÍNICA PARÍS, S.L. (2024-03-021)

Administratives Measures, Liability and Remedies

Spanish Data Protection Authority (aepd)-TELEFÓNICA DE ESPAÑA, S.A.U. (2/23/2024)

Administratives Measures, Liability and Remedies

Austrian Data Protection Authority (dsb)-Website operator (1/4/2024)

Administratives Measures, Data Subjects Rights, Liability and Remedies, Right to Erasure

Spanish Data Protection Authority (aepd)-WATIUM S.L. (5/22/2024)

Administratives Measures, Liability and Remedies

Spanish Data Protection Authority (aepd)-CORPORACIÓN DUAL GRUPO LC, S.L. (3/15/2024)

Administratives Measures, Liability and Remedies

Spanish Data Protection Authority (aepd)-DENTAL REY-GAR, S.L. (3/7/2024)

Administratives Measures, Liability and Remedies

Spanish Data Protection Authority (aepd)-Private individual (2/19/2024)

Administratives Measures, Liability and Remedies

Italian Data Protection Authority (Garante)-Azienda sanitaria locale Roma 3 (3/21/2024)

Data Breaches

Spanish Data Protection Authority (aepd)-Private individual (2/19/2024)

Administratives Measures, Liability and Remedies

Spanish Data Protection Authority (aepd)-IBERIA LÍNEAS AÉREAS DE ESPAÑA, S.A. OPERADORA. (2/13/2024)

Access Requests (DSAR), Data Subjects Rights

Spanish Data Protection Authority (aepd)-ASNEF-EQUIFAX, SERVICIOS DE INFORMACIÓN SOBRE SOLVENCIA Y CRÉDITO, S.L. (2/13/2024)

Access Requests (DSAR), Data Subjects Rights

Polish National Personal Data Protection Office (UODO)-Toyota Bank Polska S.A. (3/12/2024)

Controllers and Processors, Data Breaches

Spanish Data Protection Authority (aepd)-URQUÍA & BAS, CORREDURÍA DE SEGUROS S.L. (6/22/2022)

Controllers and Processors, Data Breaches

Spanish Data Protection Authority (aepd)-20 MINUTOS EDITORA, S.L. (3/25/2024)

Administratives Measures, Liability and Remedies

Spanish Data Protection Authority (aepd)-VACACIONES EDREAMS, S.L. (12/12/2023)

Access Requests (DSAR), Data Subjects Rights

Polish National Personal Data Protection Office (UODO)-District Court Krakow (12/19/2023)

Data Breaches

Polish National Personal Data Protection Office (UODO)-Insurance company (10/18/2023)

Controllers and Processors, Data Breaches

Polish National Personal Data Protection Office (UODO)-Santander Bank Polska S.A. (3/12/2024)

Controllers and Processors, Data Breaches, Data Subjects Rights

Polish National Personal Data Protection Office (UODO)-Unknown (1/18/2024)

Controllers and Processors, Data Breaches, Data Subjects Rights

Spanish Data Protection Authority (aepd)-ENDESA ENERGÍA, S.A.U. (10/25/2023)

Data Breaches, Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-Private individual (11/20/2023)

Administratives Measures, Liability and Remedies

Spanish Data Protection Authority (aepd)-ATLAS ENTERTAINMENT, S.L. (1/11/2024)

Administratives Measures, Liability and Remedies

Italian Data Protection Authority (Garante)-Municipality of Salento (1/24/2024)

Administratives Measures, Data Subjects Rights, Liability and Remedies

Polish National Personal Data Protection Office (UODO)-Company (12/30/2022)

Administratives Measures, Liability and Remedies, Principles, Sensitive Data

Spanish Data Protection Authority (aepd)-LEADDESK, S.L (11/17/2023)

Administratives Measures, Liability and Remedies

Spanish Data Protection Authority (aepd)-Private individual (11/20/2023)

Administratives Measures, Liability and Remedies

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Sectorul 1 al Municipiului București (1/30/2024)

Administratives Measures, Liability and Remedies, Principles, Sensitive Data

Spanish Data Protection Authority (aepd)-EASYJET AIRLINE COMPANY LIMITED (11/21/2023)

Access Requests (DSAR), Data Subjects Rights

French Data Protection Authority (CNIL)-Company (12/22/2023)

Principles, Purpose limitation

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Hora Credit IFN SA (12/7/2023)

Controllers and Processors, Data Breaches, Data Subjects Rights, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-ALBEN AIRPORT FACILITIES S.L. (10/11/2023)

Administratives Measures, Liability and Remedies

Polish National Personal Data Protection Office (UODO)-Unknown (11/16/2023)

Administratives Measures, Liability and Remedies, Principles, Sensitive Data

Polish National Personal Data Protection Office (UODO)-Unknown (8/30/2023)

Administratives Measures, Liability and Remedies, Principles, Sensitive Data

Spanish Data Protection Authority (aepd)-UPMOBILE SOLUTIONS, S.L. (10/26/2023)

Administratives Measures, Liability and Remedies

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Private individual (12/15/2023)

Administratives Measures, Liability and Remedies, Principles, Sensitive Data

Polish National Personal Data Protection Office (UODO)-Link4 Towarzystwo Ubezpieczeń S. A. (10/8/2023)

Controllers and Processors, Data Breaches

National Commission for Data Protection (CNPD)-Unknown (9/21/2023)

Data Subjects Rights, Principles, Purpose limitation, Sensitive Data

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Libra Internet Bank SA (11/20/2023)

Administratives Measures, Liability and Remedies

Spanish Data Protection Authority (aepd)-TRACTAMENT D’AIGUES TEIA, S.L. (11/13/2023)

Administratives Measures, Liability and Remedies

Italian Data Protection Authority (Garante)-Intesa Sanpaolo Spa (9/14/2023)

Access Requests (DSAR), Data Subjects Rights

Spanish Data Protection Authority (aepd)-FESTINA LOTUS S.A. (10/18/2023)

Access Requests (DSAR), Data Subjects Rights

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Homeowners Association (10/27/2023)

Administratives Measures, Liability and Remedies

Spanish Data Protection Authority (aepd)-Private individual (11/6/2023)

Administratives Measures, Liability and Remedies

Polish National Personal Data Protection Office (UODO)-Company (7/12/2023)

Controllers and Processors, Data Breaches, Data Subjects Rights

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-UAT Comuna Albeni (9/25/2023)

Administratives Measures, Liability and Remedies, Principles, Sensitive Data

Italian Data Protection Authority (Garante)-AcegasApsAmga SpA (7/6/2023)

Access Requests (DSAR), Data Subjects Rights, Lawfulness of Processing

Spanish Data Protection Authority (aepd)-ADENET SYSTEMS, S.L. (8/11/2023)

Administratives Measures, Liability and Remedies

Spanish Data Protection Authority (aepd)-RING RING CLIN S.L. (8/11/2023)

Administratives Measures, Liability and Remedies

Spanish Data Protection Authority (aepd)-MULTIGAS ASESORES S.L. (8/28/2023)

Administratives Measures, Liability and Remedies

Spanish Data Protection Authority (aepd)-QUALITY-PROVIDER S.A. (8/1/2023)

Administratives Measures, Liability and Remedies

Polish National Personal Data Protection Office (UODO)-Company (6/21/2023)

Administratives Measures, Liability and Remedies, Principles, Sensitive Data

Spanish Data Protection Authority (aepd)-Birou Gas, S.L. (7/12/2023)

Administratives Measures, Liability and Remedies

Spanish Data Protection Authority (aepd)-TRC TRUCKS 2020, S.L. (6/27/2023)

Administratives Measures, Liability and Remedies

Spanish Data Protection Authority (aepd)-PUNTO ROJO LIBROS, S.L. (6/29/2023)

Administratives Measures, Liability and Remedies

Data State Inspectorate (DSI)-Unknown (7/14/1905)

Administratives Measures, Liability and Remedies

Data State Inspectorate (DSI)-Unknown (7/14/1905)

Administratives Measures, Liability and Remedies

Data Protection Authority of Niedersachsen-Company (7/14/1905)

Access Requests (DSAR), Data Subjects Rights

Data Protection Authority of Berlin-Credit agency (7/14/1905)

Access Requests (DSAR), Data Subjects Rights

Spanish Data Protection Authority (aepd)-Unknown (6/14/2023)

Administratives Measures, Liability and Remedies

Spanish Data Protection Authority (aepd)-RCI BANQUE, S.A. SUCURSAL EN ESPAÑA (6/7/2023)

Access Requests (DSAR), Data Subjects Rights

Spanish Data Protection Authority (aepd)-LEADDESK, S.L (6/7/2023)

Administratives Measures, Liability and Remedies

Spanish Data Protection Authority (aepd)-Private individual (5/25/2023)

Administratives Measures, Liability and Remedies

Spanish Data Protection Authority (aepd)-NORDETIA CLINICS IBERIA, S.L. (5/24/2023)

Administratives Measures, Liability and Remedies

Spanish Data Protection Authority (aepd)-WILLOUGHBY COLLEGE, S.A (5/17/2023)

Administratives Measures, Liability and Remedies

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-S.C. Apollo Salon S.R.L. (6/6/2023)

Administratives Measures, Liability and Remedies

Italian Data Protection Authority (Garante)-Bolzano municipality (3/23/2023)

Controllers and Processors, Data Breaches, Data Subjects Rights, Integrity and confidentiality, Principles, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-SECURITAS DIREC ESPAÑA, S.A. (4/21/2023)

Administratives Measures, Liability and Remedies

Hellenic Data Protection Authority (HDPA)-Vodafone (2/20/2023)

Access Requests (DSAR), Data Subjects Rights

Hellenic Data Protection Authority (HDPA)-Piraeus Bank (2/2/2023)

Data Breaches, Lawfulness of Processing, Principles, Sensitive Data

Data Protection Authority of Hamburg-Covid-19 test center (7/14/1905)

Access Requests (DSAR), Data Subjects Rights

Polish National Personal Data Protection Office (UODO)-Housing cooperative (3/1/2023)

Controllers and Processors, Data Breaches, Data Subjects Rights

Data Protection Authority of Bremen-Company (7/14/1905)

Controllers and Processors, Data Breaches

Spanish Data Protection Authority (aepd)-INMARAN ASESORES S.L. (3/24/2023)

Administratives Measures, Liability and Remedies

Norwegian Supervisory Authority (Datatilsynet)-Argon Medical Devices (3/8/2023)

Controllers and Processors, Data Breaches

Spanish Data Protection Authority (aepd)-HERON CITY VALENCIA MANAGEMENT S.L. (2/21/2023)

Access Requests (DSAR), Data Subjects Rights

Spanish Data Protection Authority (aepd)-GRUPO NORCONSULTING, S.L. (2/28/2023)

Access Requests (DSAR), Data Subjects Rights

Spanish Data Protection Authority (aepd)-EUROPYMES SERVICIOS INTEGRALES S.L. (2/28/2023)

Access Requests (DSAR), Data Subjects Rights

Deputy Data Protection Ombudsman-Suomen Asiakastieto Oy (2/17/2023)

Administratives Measures, Liability and Remedies

Italian Data Protection Authority (Garante)-Comune di Monte Sant’Angelo (4/28/2022)

Access Requests (DSAR), Controllers and Processors, Data Subjects Rights, Lawfulness of Processing, Representative

Italian Data Protection Authority (Garante)-Mister Brick S.a.s. (8/5/2022)

Access Requests (DSAR), Accountability, Controllers and Processors, Data Subjects Rights, Principles, Representative

Italian Data Protection Authority (Garante)-Douglas Italia S.p.a. (10/20/2022)

Accountability, Lawfulness of Processing, Principles, Purpose limitation, Sensitive Data

Data Protection Authority of Sachsen-Anhalt-Magdeburg University Hospital (7/15/1905)

Controllers and Processors, Data Breaches

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Dent Estet Clinic SA (1/31/2023)

Controllers and Processors, Data Breaches

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Dante Internațional SA (1/18/2023)

Access Requests (DSAR), Data Subjects Rights

Polish National Personal Data Protection Office (UODO)-Unknown (Unknown)

Administratives Measures, Liability and Remedies

Spanish Data Protection Authority (aepd)-ADENET SYSTEMS, S.L. (12/29/2022)

Administratives Measures, Liability and Remedies

Spanish Data Protection Authority (aepd)-EDITORIAL RIBADEO S.L. (1/13/2023)

Administratives Measures, Liability and Remedies

French Data Protection Authority (CNIL)-FREE SAS (12/8/2022)

Access Requests (DSAR), Controllers and Processors, Data Subjects Rights, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Codess Sociale, Soc. Coop. sociale. (10/6/2022)

Access Requests (DSAR), Data Subjects Rights

Spanish Data Protection Authority (aepd)-ALPA 57 PRODUCCIONES, S.L. (11/25/2022)

Administratives Measures, Liability and Remedies

Italian Data Protection Authority (Garante)-Colosseo S.r.l. (8/5/2022)

Access Requests (DSAR), Accountability, Controllers and Processors, Data Subjects Rights, Principles, Representative

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-AMPLIFON Hungary Trade and Service Provider LLC (8/11/2022)

Controllers and Processors, Data Subjects Rights, Principles, Purpose limitation, Representative

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-SC Das Sense Society SRL (11/9/2022)

Administratives Measures, Liability and Remedies

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Homeowners Association Bld. Pipera 1-2E (11/18/2022)

Administratives Measures, Liability and Remedies

Spanish Data Protection Authority (aepd)-BANCO BILBAO VIZCAYA ARGENTARIA, S.A. (10/31/2022)

Controllers and Processors, Principles, Purpose limitation, Representative, Technical and Organisational Measures (TOMs)

French Data Protection Authority (CNIL)-Clearview Al Inc. (10/17/2022)

Access Requests (DSAR), Data Subjects Rights, Lawfulness of Processing

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-SC Materiale Constructii Online SRL (10/18/2022)

Administratives Measures, Liability and Remedies

Icelandic data protection authority (‘Persónuvernd’)-HEI – Medical Travel (5/3/2022)

Access Requests (DSAR), Data Subjects Rights

Italian Data Protection Authority (Garante)-Stay over s.r.l. (7/21/2022)

Access Requests (DSAR), Data Subjects Rights, Principles

Spanish Data Protection Authority (aepd)-BAYARD REVISTAS, S.A. (9/28/2022)

Controllers and Processors, Data Breaches, Data Subjects Rights, Integrity and confidentiality, Principles

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Company (8/8/2022)

Accountability, Consent, Lawfulness of Processing, Principles, Purpose limitation, Sensitive Data

Italian Data Protection Authority (Garante)-Federazione Italiana Nuoto (6/16/2022)

Access Requests (DSAR), Data Subjects Rights

French Data Protection Authority (CNIL)-ACCOR SA (8/19/2022)

Access Requests (DSAR), Data Subjects Rights, Right to Object

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-E Software Concept SRL (7/7/2022)

Administratives Measures, Liability and Remedies, Technical and Organisational Measures (TOMs)

Polish National Personal Data Protection Office (UODO)-University Hospital of the Medical University of Warsaw (7/6/2022)

Controllers and Processors, Data Breaches, Data Subjects Rights

Spanish Data Protection Authority (aepd)-DKV Seguros y Reaseguros, S.A.E. (7/13/2022)

Controllers and Processors, Data Breaches, Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-Bar owner (7/19/2022)

Principles, Purpose limitation

Spanish Data Protection Authority (aepd)-Private individual (7/19/2022)

Administratives Measures, Liability and Remedies

Polish National Personal Data Protection Office (UODO)-Głównego Geodetę Kraju (7/6/2022)

Controllers and Processors, Data Breaches, Data Subjects Rights

Hellenic Data Protection Authority (HDPA)-WIND Ελλάς Τηλεπικοινωνίες ΑΕΒΕ (6/20/2022)

Access Requests (DSAR), Data Subjects Rights

Polish National Personal Data Protection Office (UODO)-Esselmann Technika Pojazdowa Sp. z o.o. Sp. k. (6/6/2022)

Controllers and Processors, Data Breaches

Data Protection Authority of Hessen-Restaurant (7/13/1905)

Principles, Purpose limitation

Italian Data Protection Authority (Garante)-Made in Italy s.r.l.s. (4/7/2022)

Access Requests (DSAR), Controllers and Processors, Data Protection Officer (DPO), Data Subjects Rights, Lawfulness of Processing

Deputy Data Protection Ombudsman-Telemarketing company (4/29/2022)

Administratives Measures, Liability and Remedies

Spanish Data Protection Authority (aepd)-Mercadona S.A. (5/13/2022)

Access Requests (DSAR), Data Subjects Rights, Lawfulness of Processing

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Kredyt Inkaso Investments RO S.A (5/18/2022)

Controllers and Processors, Data Breaches, Principles, Representative, Sensitive Data

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Workshop (3/29/2022)

Legitimate Interest, Principles, Purpose limitation, Sensitive Data

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-MAYR MELNHOF PACKAGING ROMANIA S.R.L. (5/17/2022)

Accountability, Lawfulness of Processing, Principles, Purpose limitation, Sensitive Data

Spanish Data Protection Authority (aepd)-RAMONA FILMS, S.L. (5/17/2022)

Administratives Measures, Liability and Remedies

Italian Data Protection Authority (Garante)-Alfa Shipyard s.r.l. (3/10/2022)

Administratives Measures, Liability and Remedies

Spanish Data Protection Authority (aepd)-CLÍNICA DENTAL SAN FRANCISCO, S.L. (4/29/2022)

Access Requests (DSAR), Data Subjects Rights

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Megareduceri TV S.R.L. (5/3/2022)

Administratives Measures, Liability and Remedies

Belgian Data Protection Authority (APD)-Company (4/1/2022)

Access Requests (DSAR), Controllers and Processors, Data Subjects Rights, Lawfulness of Processing, Representative

Italian Data Protection Authority (Garante)-Studio Colli Aniene Verderocca S.r.l. (2/10/2022)

Access Requests (DSAR), Data Subjects Rights

Italian Data Protection Authority (Garante)-Azienda sanitaria provinciale di Caltanissetta (3/10/2022)

Access Requests (DSAR), Controllers and Processors, Data Subjects Rights, Principles, Representative

Spanish Data Protection Authority (aepd)-FLORAQUEEN FLOWERING THE WORLD S.L. (4/18/2022)

Administratives Measures, Liability and Remedies

Spanish Data Protection Authority (aepd)-DOOR2DOOR SPAIN, S.L. (4/19/2022)

Administratives Measures, Liability and Remedies

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Property owners’ association (4/7/2022)

Administratives Measures, Liability and Remedies, Principles, Sensitive Data

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Operatorul Briza Land S.R.L. (3/10/2022)

Access Requests (DSAR), Data Subjects Rights

Polish National Personal Data Protection Office (UODO)-Santander Bank Polska S. A. (1/19/2022)

Controllers and Processors, Data Breaches

Spanish Data Protection Authority (aepd)-MALAGATROM, S.L.U. (2/22/2022)

Administratives Measures, Liability and Remedies

Spanish Data Protection Authority (aepd)-RECLAMADOR, S.L. (2/14/2022)

Access Requests (DSAR), Data Subjects Rights

Data Protection Authority of Hamburg-Clearview AI Inc. (7/12/1905)

Administratives Measures, Liability and Remedies

Data Protection Authority of Ireland-Limerick City and County Council (12/9/2021)

Access Requests (DSAR), Data Subjects Rights

Data Protection Authority of Ireland-Irish Teacher Council (12/2/2021)

Controllers and Processors, Data Breaches, Data Subjects Rights, Principles

Hellenic Data Protection Authority (HDPA)-Greek Ministry of Tourism (12/29/2021)

Controllers and Processors, Data Breaches, Data Protection Officer (DPO), Data Subjects Rights

Italian Data Protection Authority (Garante)-TIM S.p.A. (11/11/2021)

Access Requests (DSAR), Data Subjects Rights

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Telekom Romania Communications SA (12/6/2021)

Access Requests (DSAR), Accountability, Accuracy, Data Subjects Rights, Principles, Sensitive Data

Data Protection Authority of Saxony-Unknown (7/11/1905)

Access Requests (DSAR), Data Subjects Rights

Deputy Data Protection Ombudsman-Psykoterapiakeskus Vastaamo (12/7/2021)

Controllers and Processors, Data Breaches, Data Subjects Rights, Integrity and confidentiality, Principles

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-SC Nobiotic Pharma SRL (12/13/2021)

Administratives Measures, Liability and Remedies

Polish National Personal Data Protection Office (UODO)-Bank Millennium S.A (10/14/2021)

Controllers and Processors, Data Breaches, Data Subjects Rights

Bulgarian Commission for Personal Data Protection (KZLD)-Bank (10/26/2021)

Principles, Purpose limitation

Spanish Data Protection Authority (aepd)-FUENSANTA S.L. (11/23/2021)

Administratives Measures, Liability and Remedies

Spanish Data Protection Authority (aepd)-MERCEDES GERENCIA, S.L. (10/25/2021)

Administratives Measures, Liability and Remedies

Spanish Data Protection Authority (aepd)-AD735 DATA MEDIA ADVERTISING S.L. (11/12/2021)

Administratives Measures, Liability and Remedies

National Commission for Data Protection (CNPD)-Insurance company (8/5/2021)

Controllers and Processors, Data Breaches, Data Subjects Rights, Integrity and confidentiality, Principles

Hellenic Data Protection Authority (HDPA)-Rhodes Municipal Transport Company (9/3/2021)

Access Requests (DSAR), Data minimisation, Data Subjects Rights

Spanish Data Protection Authority (aepd)-Bar owner (9/28/2021)

Principles, Purpose limitation

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Actamedica SRL (8/24/2021)

Controllers and Processors, Data Breaches, Data Processing Agreement (DPA), Data Subjects Rights

Spanish Data Protection Authority (aepd)-PERSONAL MARK, S.L. (7/27/2021)

Access Requests (DSAR), Data Subjects Rights

Polish National Personal Data Protection Office (UODO)-Fundację Promocji Mediacji i Edukacji Prawnej Lex Nostra (6/30/2021)

Controllers and Processors, Data Breaches, Data Subjects Rights

Polish National Personal Data Protection Office (UODO)-Sopockie Towarzystwo Ubezpieczeń ERGO Hestia S.A. (6/21/2021)

Controllers and Processors, Data Breaches, Data Subjects Rights

Data Protection Authority of Bavaria-Unknown (7/12/1905)

Administratives Measures, Liability and Remedies

French Data Protection Authority (CNIL)-BRICO PRIVÉ (6/14/2021)

Access Requests (DSAR), Controllers and Processors, Data Subjects Rights, Principles, Storage limitation, Technical and Organisational Measures (TOMs)

Norwegian Supervisory Authority (Datatilsynet)-Unknown (6/22/2021)

Access Requests (DSAR), Controllers and Processors, Data Subjects Rights, Principles, Representative

Hellenic Data Protection Authority (HDPA)-KARIERA A.E. (5/12/2021)

Access Requests (DSAR), Data Subjects Rights, Principles, Privacy by Design

Italian Data Protection Authority (Garante)-Istituto Nazionale Previdenza Sociale (INPS) (4/15/2021)

Access Requests (DSAR), Data Subjects Rights, Lawfulness of Processing

Polish Data Protection Authority (UODO)-Cyfrowy Polsat S.A. (4/22/2021)

Controllers and Processors, Data Breaches, Data Subjects Rights, Technical and Organisational Measures (TOMs)

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Owners Association of Iasi Municipality (5/19/2021)

Administratives Measures, Liability and Remedies, Principles, Sensitive Data

Spanish Data Protection Authority (aepd)-Vodafone España, S.A.U. (5/26/2021)

Administratives Measures, Liability and Remedies

Spanish Data Protection Authority (aepd)-Solram T Y R S.L. (5/12/2021)

Access Requests (DSAR), Data Subjects Rights

Hellenic Data Protection Authority (HDPA)-A. ΕΠΙΛΟΓΗ ΙΔΙΩΤΙΚΗ ΚΕΦΑΛΑΙΟΥΧΙΚΗ ΕΤΑΙΡΕΙΑ (5/12/2021)

Access Requests (DSAR), Data Subjects Rights, Lawfulness of Processing, Principles, Sensitive Data

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Budapest Főváros Kormányhivatala XI. kerületi Hivatalát (11th District Public Health Department of the Government Office of the Capital City Budapest) (3/24/2021)

Controllers and Processors, Data Breaches, Sensitive Data, Technical and Organisational Measures (TOMs)

Dutch Supervisory Authority for Data Protection (AP)-PVV Overijssel (6/16/2020)

Controllers and Processors, Data Breaches

Hellenic Data Protection Authority (HDPA)-Candidate for parliamentary elections (4/16/2021)

Access Requests (DSAR), Data Subjects Rights

Spanish Data Protection Authority (aepd)-Anytime Fitness Iberia S.L. (4/27/2021)

Access Requests (DSAR), Data Subjects Rights

Hellenic Data Protection Authority (HDPA)-Candidate for parliamentary elections (3/22/2021)

Access Requests (DSAR), Data Subjects Rights

Spanish Data Protection Authority (aepd)-Kutxabank, S.A. (4/8/2021)

Access Requests (DSAR), Data Subjects Rights

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-S.C. Tip Top Food Industry S.R.L (4/15/2021)

Accountability, Lawfulness of Processing, Principles, Purpose limitation, Sensitive Data

Dutch Supervisory Authority for Data Protection (AP)-Booking.com B.V. (12/10/2020)

Controllers and Processors, Data Breaches

Polish National Personal Data Protection Office (UODO)-Enea S.A. (1/11/2021)

Controllers and Processors, Data Breaches

Spanish Data Protection Authority (aepd)-Certime S.A. (3/15/2021)

Principles, Purpose limitation

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Natural person holding the position of General Secretary for a political party in Bucharest (3/4/2021)

Administratives Measures, Liability and Remedies, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-I-DE Redes Eléctricas Inteligentes, S.A.U (3/2/2021)

Performance of Contract, Principles, Purpose limitation, Sensitive Data

Polish National Personal Data Protection Office (UODO)-Unknown (1/5/2021)

Controllers and Processors, Data Breaches

Data Protection Authority of Ireland-University College Dublin (12/17/2020)

Controllers and Processors, Data Breaches, Principles, Sensitive Data, Storage limitation, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-Xfera Moviles S.A. (2/1/2021)

Administratives Measures, Liability and Remedies

Polish National Personal Data Protection Office (UODO)-Śląski Uniwersytet Medyczny (Medical University of Silesia) (1/5/2021)

Controllers and Processors, Data Breaches, Data Subjects Rights

Polish National Personal Data Protection Office (UODO)-Towarzystwo Ubezpieczeń i Reasekuracji WARTA S.A. (12/28/2020)

Controllers and Processors, Data Breaches, Data Subjects Rights

Polish National Personal Data Protection Office (UODO)-TUiR Warta S.A. (12/9/2020)

Controllers and Processors, Data Breaches, Data Subjects Rights

Data Protection Authority of Ireland-Twitter International Company (12/15/2020)

Controllers and Processors, Data Breaches

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Robinson Tours Ltd. (Robinson Tours Idegenforgalmi és Szolgáltató Kft.) (12/16/2020)

Controllers and Processors, Data Breaches, Lawfulness of Processing, Performance of Contract, Principles, Privacy by Design

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Unknown (12/16/2020)

Principles, Purpose limitation, Sensitive Data

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-S.C. C&V Water Control S.A. (12/22/2020)

Administratives Measures, Liability and Remedies, Principles, Sensitive Data

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Vodafone România SA (11/23/2020)

Access Requests (DSAR), Data Subjects Rights

French Data Protection Authority (CNIL)-Carrefour France (11/18/2020)

Access Requests (DSAR), Data Subjects Rights, Principles

Spanish Data Protection Authority (aepd)-Anmavas 61, S.L. (11/18/2020)

Administratives Measures, Liability and Remedies

Cypriot Data Protection Commissioner-Bank of Cyprus Public Company Ltd (10/19/2020)

Access Requests (DSAR), Controllers and Processors, Data Subjects Rights, Integrity and confidentiality, Principles, Representative, Technical and Organisational Measures (TOMs)

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Employer (7/23/2020)

Access Requests (DSAR), Data Subjects Rights

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Globus Score SRL (10/20/2020)

Administratives Measures, Liability and Remedies

Italian Data Protection Authority (Garante)-Mapei S.p.A. (7/2/2020)

Access Requests (DSAR), Data Subjects Rights, Principles

Hellenic Data Protection Authority (HDPA)-Candidate for parliamentary elections (8/3/2020)

Access Requests (DSAR), Data Subjects Rights

Spanish Data Protection Authority (aepd)-Party of the Socialists of Catalonia (8/17/2020)

Principles, Purpose limitation

Spanish Data Protection Authority (aepd)-Bankia S.A. (8/28/2020)

Principles, Purpose limitation

Italian Data Protection Authority (Garante)-National Institute for Social Security – Department of the Province of Brescia (8/4/2020)

Access Requests (DSAR), Data Subjects Rights

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-SC Viva Credit IFN SA (7/30/2020)

Access Requests (DSAR), Data Subjects Rights

Spanish Data Protection Authority (aepd)-Iberia Lae SA Operadora Unipersonal (7/20/2020)

Administratives Measures, Liability and Remedies

Spanish Data Protection Authority (aepd)-Xfera Moviles S.A. (7/23/2020)

Administratives Measures, Liability and Remedies

Italian Data Protection Authority (Garante)-San Giorgio Jonico (3/5/2020)

Access Requests (DSAR), Controllers and Processors, Data Subjects Rights, Principles, Representative

Spanish Data Protection Authority (aepd)-Saunier-Tec Mantenimientos de Calor y Frio, SL. (7/2/2020)

Controllers and Processors, Data Breaches

Belgian Data Protection Authority (APD)-Unknown (6/19/2020)

Access Requests (DSAR), Controllers and Processors, Data Subjects Rights, Principles, Representative

Belgian Data Protection Authority (APD)-Unknown (6/16/2020)

Access Requests (DSAR), Controllers and Processors, Cooperation with Supervisory Authorithy, Data Subjects Rights

Danish Data Protection Authority (Datatilsynet)-Lejre Municipality (6/30/2020)

Controllers and Processors, Data Breaches, Principles, Representative

Data Protection Authority of Ireland-Tusla Child and Family Agency (6/30/2020)

Controllers and Processors, Data Breaches

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Digi Távközlési Szolgáltató Kft. (‘Digi’) (electronic communication service provider) (6/12/2020)

Controllers and Processors, Principles, Purpose limitation, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-Equifax Iberica, S.L. (6/9/2020)

Access Requests (DSAR), Data Subjects Rights

Spanish Data Protection Authority (aepd)-Iberdrola Clientes (6/4/2020)

Administratives Measures, Liability and Remedies

Data Protection Authority of Brandenburg-Unknown Company (7/11/1905)

Access Requests (DSAR), Data Subjects Rights

Danish Data Protection Authority (Datatilsynet)-JobTeam A/S DKK (5/15/2020)

Access Requests (DSAR), Data Subjects Rights

Deputy Data Protection Ombudsman-Posti Group Oyj (5/22/2020)

Access Requests (DSAR), Data Subjects Rights

Data Protection Authority of Sweden (Integritetsskyddsmyndigheten)-National Government Service Centre (NGSC) (4/29/2020)

Controllers and Processors, Data Breaches, Data Subjects Rights

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-SOS Infertility Association (3/25/2020)

Administratives Measures, Liability and Remedies

Spanish Data Protection Authority (aepd)-Xfera Moviles S.A. (3/25/2020)

Administratives Measures, Liability and Remedies

Hellenic Data Protection Authority (HDPA)-Public Power Corporation S.A. (2/21/2020)

Access Requests (DSAR), Data Subjects Rights

Hellenic Data Protection Authority (HDPA)-Speech and Special Education Centre – Mihou Dimitra (3/20/2020)

Access Requests (DSAR), Controllers and Processors, Data Subjects Rights, Representative

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Local bank (5/31/2019)

Access Requests (DSAR), Data Subjects Rights

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Unknown (6/26/2019)

Access Requests (DSAR), Controllers and Processors, Data Subjects Rights, Principles, Representative

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Representative of a local government (3/4/2020)

Access Requests (DSAR), Controllers and Processors, Data Subjects Rights, Principles, Representative

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Directorate of Social and Child Welfare Institutions of the Ferencvaros District of Budapest (5/21/2019)

Controllers and Processors, Data Breaches

Data Protection Authority of Sweden (Integritetsskyddsmyndigheten)-Google LLC (3/11/2020)

Access Requests (DSAR), Controllers and Processors, Data Subjects Rights, Principles, Representative

Croatian Data Protection Authority (azop)-Bank (name not available at the moment) (3/13/2020)

Access Requests (DSAR), Data Subjects Rights

Spanish Data Protection Authority (aepd)-Telefónica (3/18/2020)

Administratives Measures, Liability and Remedies

Data Protection Authority of Hamburg-Hamburger Verkehrsverbund GmbH (HVV GmbH) (7/11/1905)

Controllers and Processors, Data Breaches, Data Subjects Rights

Italian Data Protection Authority (Garante)-Eni Gas e Luce (12/11/2019)

Access Requests (DSAR), Controllers and Processors, Data Subjects Rights, Principles, Representative, Right to Object

Italian Data Protection Authority (Garante)-TIM (telecommunications operator) (1/15/2020)

Access Requests (DSAR), Controllers and Processors, Data Subjects Rights, Principles, Representative, Right to Object

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Hora Credit IFN SA (12/10/2019)

Controllers and Processors, Data Breaches, Data Subjects Rights, Principles, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-Vodafone España, S.A.U. (1/9/2020)

Administratives Measures, Liability and Remedies

Belgian Data Protection Authority (APD)-Nursing Care Organisation (12/17/2019)

Access Requests (DSAR), Data Subjects Rights

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Globus Score SRL (12/16/2019)

Administratives Measures, Liability and Remedies

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Modern Barber (11/26/2019)

Administratives Measures, Liability and Remedies

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Nicola Medical Team 17 SRL (12/2/2019)

Administratives Measures, Liability and Remedies

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Royal President S.R.L. (11/29/2019)

Access Requests (DSAR), Controllers and Processors, Data Subjects Rights, Representative, Technical and Organisational Measures (TOMs)

Slovak Data Protection Office-Unknown (Unknown)

Access Requests (DSAR), Data Subjects Rights

Data State Inspectorate (DSI)-Online Services (8/26/2019)

Access Requests (DSAR), Data Subjects Rights

Portuguese Data Protection Authority (CNPD)-Unknown (2/5/2019)

Access Requests (DSAR), Data Subjects Rights

Data Protection Authority of Berlin-Delivery Hero (9/19/2019)

Access Requests (DSAR), Data Subjects Rights, Right to Object

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Unknown (6/25/2019)

Controllers and Processors, Data Breaches

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Unknown (4/5/2019)

Access Requests (DSAR), Data Subjects Rights

Data Protection Authority of Hamburg-Unknown (7/10/1905)

Controllers and Processors, Data Breaches, Data Subjects Rights

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Hungarian political party (4/5/2019)

Controllers and Processors, Data Breaches, Data Subjects Rights

Lithuanian Data Protection Authority (VDAI)-Payment service provider UAB MisterTango (5/16/2019)

Controllers and Processors, Data Breaches, Data Subjects Rights, Principles

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Unnamed financial institution (3/4/2019)

Controllers and Processors, Data Subjects Rights, Principles, Purpose limitation, Representative, Right to Erasure

Bulgarian Commission for Personal Data Protection (KZLD)-Employer (2/22/2019)

Access Requests (DSAR), Data Subjects Rights

Cypriot Data Protection Commissioner-State Hospital (7/11/1905)

Access Requests (DSAR), Data Subjects Rights

Czech Data Protection Auhtority (UOOU)-Unknown (10/25/2018)

Access Requests (DSAR), Data Subjects Rights

Czech Data Protection Auhtority (UOOU)-Unknown (2/26/2019)

Access Requests (DSAR), Data Subjects Rights

Czech Data Protection Auhtority (UOOU)-Unknown (5/6/2019)

Access Requests (DSAR), Data Subjects Rights

Belgian Data Protection Authority (APD)-Mayor (5/28/2019)

Controllers and Processors, Principles, Purpose limitation, Representative

Bulgarian Commission for Personal Data Protection (KZLD)-Bank (12/4/2018)

Controllers and Processors, Principles, Purpose limitation, Representative

Case C‑21/23 CJEU (full text in german)

Controllers and Processors, Data Breaches, Health Data, Lawfulness of Processing, Principles, Sensitive Data

Press Release No 159/24 on Judgment of the Court in Case C-21/23 CJEU

Controllers and Processors, Data Breaches, Health Data, Lawfulness of Processing, Principles, Sensitive Data

Решение Рег.№ ППН-02-399-2019 КЗЛД – НАП

Controllers and Processors, Data Breaches, Lawfulness of Processing

Наказателно постановление-04-2019-КЗЛД-НАП

Controllers and Processors, Data Breaches, Lawfulness of Processing

Genetic Testing Company 23andMe Pays $30M for Data Breach

Data Breaches, Sensitive Data

The IDTA, Addendum and TRA: practical guidance for cross-border transfers by the UK ICO

Access Requests (DSAR), Data Transfers

CASE STUDIES (2018 – 2023) by the Irish DPC

Access Requests (DSAR), Controllers and Processors, Data Breaches, Data Subjects Rights, Liability and Remedies, Supervisory Authorities

One-stop-shop case digest on Security of Processing and Data Breach Notification by the EDPB

Controllers and Processors, Data Breaches, Technical and Organisational Measures (TOMs)

How to handle someone’s data subject access request when there is information about other individuals involved by the Irish DPA

Access Requests (DSAR), Data Subjects Rights

[DRAFT] Data Confidentiality – Identifying and Protecting Assets Against Data Breaches by NIST

Controllers and Processors, Data Breaches

DSAR management for controllers by Bailiwick of Guernsey’s DPA

Access Requests (DSAR), Data Subjects Rights

Data breach preparation and response by the Australian Information Commisioners

Controllers and Processors, Data Breaches

Data Breach Process Guidance by HSE

Controllers and Processors, Data Breaches

C-272/19

Access Requests (DSAR), Data Controller, Data Subjects Rights, Definitions

C-154/21

Access Requests (DSAR), Data Subjects Rights

C-77/21

Principles, Purpose limitation

Case C-487/21

Access Requests (DSAR), Data Subjects Rights

C-349/21

Access Requests (DSAR), Data Subjects Rights

Noyb Complaint Case: C-082-01 to EU Data protection Supervisor against EU Parliament

Controllers and Processors, Data Breaches, Public Administrative Body

Decision by Dutch Data Protection Authority to impose an administrative fine on Uber |English

Controllers and Processors, Data Breaches, Data Subjects Rights

Noyb Complaint Case: C-082-02 to EU Data protection Supervisor against EU Parliament

Controllers and Processors, Data Breaches, Public Administrative Body

NIST Special Publication_1800-29 Data Confidentiality- Detect, Respond to, and Recover from Data Breaches

Controllers and Processors, Data Breaches

Global Third Party Cybersecurity Breaches by SecurityScorecard

Controllers and Processors, Data Breaches

Opinion 19/2021 on the draft decision of the competent supervisory authority of Hungary regarding the approval of the requirements for accreditation of a certification body pursuant to Article 43.3 (GDPR) |EDPB

Accreditation

Decision on the merits 46/2024 by the Belgian DPA

Access Requests (DSAR), Data Subjects Rights

Personal data breach report form

Controllers and Processors, Data Breaches

Opinion 25/2021 on the draft decision of the competent supervisory authority of Lithuania regarding the approval of the requirements for accreditation of a certification body pursuant to Article 43.3 (GDPR) |EDPB

Accreditation

Opinion 35/2021 on the draft decision of the competent supervisory authority of Belgium regarding the approval of the requirements for accreditation of a certification body pursuant to Article 43.3 (GDPR) |EPDB

Accreditation

Opinion 36/2021 on the draft decision of the competent supervisory authority of Norway regarding the approval of the requirements for accreditation of a certification body pursuant to Article 43.3 (GDPR) |EPDB

Accreditation

Opinion 37/2021 on the draft decision of the competent supervisory authority of Malta regarding the approval of the requirements for accreditation of a code of conduct monitoring body pursuant to article 41 GDPR |EPDB

Accreditation

Opinion 38/2021 on the draft decision of the competent supervisory authority of Latvia regarding the approval of the requirements for accreditation of a certification body pursuant to Article 43.3 (GDPR) |EPDB

Accreditation

Opinion 12/2022 on the draft decision of the competent supervisory authority of France regarding the approval of the requirements for accreditation of a certification body pursuant to Article 43.3 (GDPR) |EPDB

Accreditation

Opinion 13/2022 on the draft decision of the competent supervisory authority of Bulgaria regarding the approval of the requirements for accreditation of a certification body pursuant to Article 43.3 (GDPR) |EPDB

Accreditation

Opinion 11/2023 on the draft decision of the competent supervisory authority of Sweden regarding the approval of the requirements for accreditation of a code of conduct monitoring body pursuant to article 41 GDPR |EPDB

Accreditation

Opinion 12/2023 on the draft decision of the competent supervisory authority of Cyprus regarding the approval of the requirements for accreditation of a certification body pursuant to Article 43.3 (GDPR) |EPDB

Accreditation

Opinion 13/2023 on the draft decision of the competent supervisory authority of Croatia regarding the approval of the requirements for accreditation of a certification body pursuant to Article 43.3 (GDPR) |EPDB

Accreditation

Opinion 11/2022 on the draft decision of the competent supervisory authority of Poland regarding the approval of the requirements for accreditation of a certification body pursuant to Article 43.3 (GDPR) |EPDB

Accreditation

Opinion 4/2023 on the draft decision of the competent supervisory authority of Malta regarding the approval of the requirements for accreditation of a certification body pursuant to Article 43.3 (GDPR) |EPDB

Accreditation

EDPB-EDPS Joint Opinion 02/2023 on the Proposal for a Regulation of the European Parliament and of the Council on the establishment of the digital euro

Accreditation

EDPB-EDPS Joint Opinion 01/2023 on the Proposal for a Regulation of the European Parliament and of the Council laying down additional procedural rules relating to the enforcement of Regulation (EU) 2016/679

Accreditation

Personal data breaches in the health sector: how to avoid them (and how to deal with them when they happen) by the UK ICO

Data Breaches, Health Data

How to deal with SARs as an employer by the UK ICO

Access Requests (DSAR), Employment

Joint statement on data scraping and the protection of privacy

Personal Data Collection

Records of Processing Activities under Article 30 GDPR | Irish DPC

Records of processing Activities (ROPA)

WORKING PARTY 29 POSITION PAPER on the derogations from the obligation to maintain records of processing activities pursuant to Article 30(5) GDPR

Records of processing Activities (ROPA)

Records of processing activities template by the CNIL

Records of processing Activities (ROPA)

Guidelines 01/2021 on Examples regarding Personal Data Breach Notification

Data Breaches

Guidelines 9/2022 on personal data breach notification under GDPR [Official EDPB Guidelines] [pdf]

Data Breaches

Telegram CEO’s Arrest Sparks Debate on Privacy vs. Regulation

Personal Data Collection, Technical and Organisational Measures (TOMs)

Balancing transparency and empathy in request and complaint handling by the UK ICO

Access Requests (DSAR)

Section 40(2) FOIA – the personal data exemption – a practical approach by the UK ICO

Access Requests (DSAR), Data Subjects Rights

Building a Cybersecurity and Privacy Learning Program | NIST | Initial Public Draft

Data Breaches, Employment, Risk Management, Technical and Organisational Measures (TOMs)

Salvatore Manni Case C 398/15

Data Retention, Legitimate Interest, Storage limitation

A Guide to UK GDPR Principles | UK ICO

Accountability, Accuracy, Data minimisation, Integrity and confidentiality, Lawfulness of Processing, Principles, Purpose limitation, Storage limitation, Transparency

GDPR Data Incidents – The Step-by-Step Playbook for Effective Response

Data Breaches