Filtered (326)
Filters
Search
Type
Country
Categories
Show (326)
Cancel
Personal Data Breach Management and Reporting Toolkit Tracker

Data Breaches

Personal Data Breach Management and Reporting Toolkit Tracker – more information about the Toolkit by UK ICO

Data Breaches

Polish National Personal Data Protection Office (UODO)-National Prosecutor’s Office (9/2/2024)

Consent, Controllers and Processors, Data Breaches, Lawfulness of Processing, Principles, Sensitive Data

Spanish Data Protection Authority (aepd)-AFIANZA ASESORES S.L. (3/16/2023)

Data Subjects Rights, Integrity and confidentiality, Principles

Polish National Personal Data Protection Office (UODO)-Company (5/20/2024)

Controllers and Processors, Integrity and confidentiality, Principles, Representative, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-UNIQLO EUROPE, LTD, SUCURSAL EN ESPAÑA (8/12/2024)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-CAIXABANK S.A. (5/28/2024)

Data Subjects Rights, Integrity and confidentiality, Principles

Italian Data Protection Authority (Garante)-Azienda Sanitaria Locale TO4 (5/23/2024)

Integrity and confidentiality, Principles, Sensitive Data

Polish National Personal Data Protection Office (UODO)-Committee (4/24/2024)

Controllers and Processors, Integrity and confidentiality, Principles, Privacy by Design, Representative, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-CUI ZSQ FOOD, S.L. (6/20/2024)

Integrity and confidentiality, Principles

Data Protection Authority of Sweden-Avanza Bank AB (6/24/2024)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-ALLIANZ COMPAÑÍA DE SEGUROS Y REASEGUROS, S.A. (6/10/2024)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-PILLOW HOTELS, S.L. (5/30/2024)

Controllers and Processors, Data Breaches, Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-HIPERBAZAR YONGFA 2018 SL (3/21/2024)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-President of a workers’ council (5/23/2024)

Integrity and confidentiality, Principles

Polish National Personal Data Protection Office (UODO)-Association (4/30/2024)

Controllers and Processors, Data Breaches

Spanish Data Protection Authority (aepd)-Homeowners’ association (5/7/2024)

Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-Homeowners’ association (5/9/2024)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-4FINANCE SPAIN FINANCIAL SERVICES, S.A.U. (5/7/2024)

Data Subjects Rights, Integrity and confidentiality, Principles

Austrian Data Protection Authority (dsb)-Website operator (1/4/2024)

Administratives Measures, Data Subjects Rights, Liability and Remedies, Right to Erasure

Italian Data Protection Authority (Garante)-Enel Energia SpA (2/8/2024)

Controllers and Processors, Integrity and confidentiality, Principles, Privacy by Design, Representative, Technical and Organisational Measures (TOMs)

Data Protection Authority of Hessen-Physician (7/15/1905)

Data Subjects Rights, Integrity and confidentiality, Principles

Information Commissioner (ICO)-Central Young Men’s Christian Association (4/30/2024)

Data Subjects Rights, Integrity and confidentiality, Principles

Italian Data Protection Authority (Garante)-Azienda sanitaria locale Roma 3 (3/21/2024)

Data Breaches

Spanish Data Protection Authority (aepd)-SINDICATO LIBRE DE TRANSPORTES (11/3/2023)

Data Subjects Rights, Integrity and confidentiality, Principles

Hellenic Data Protection Authority (HDPA)-Hellenic Post (ΕΛΛΗΝΙΚΑ ΤΑΧΥΔΡΟΜΕΙΑ ΑΝΩΝΥΜΗ ΕΤΑΙΡΕΙΑ) (2/28/2024)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-PRESTAMER, S.L. (4/12/2024)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-Ophthalmologic institute (10/26/2023)

Data Subjects Rights, Integrity and confidentiality, Principles

Polish National Personal Data Protection Office (UODO)-Toyota Bank Polska S.A. (3/12/2024)

Controllers and Processors, Data Breaches

Spanish Data Protection Authority (aepd)-URQUÍA & BAS, CORREDURÍA DE SEGUROS S.L. (6/22/2022)

Controllers and Processors, Data Breaches

Spanish Data Protection Authority (aepd)-CENTRO MÉDICO SALUS BALEARES, S.L. (2/8/2024)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-INSTITUT MARQUÉS OBSTETRICIA I GINECOLOGIA, S.L.P. (11/2/2023)

Data Subjects Rights, Integrity and confidentiality, Principles

Polish National Personal Data Protection Office (UODO)-District Court Krakow (12/19/2023)

Data Breaches

Polish National Personal Data Protection Office (UODO)-Insurance company (10/18/2023)

Controllers and Processors, Data Breaches

Polish National Personal Data Protection Office (UODO)-Santander Bank Polska S.A. (3/12/2024)

Controllers and Processors, Data Breaches, Data Subjects Rights

Spanish Data Protection Authority (aepd)-BANCO BILBAO VIZCAYA ARGENTARIA, S.A (1/19/2023)

Data Subjects Rights, Integrity and confidentiality, Principles

Italian Data Protection Authority (Garante)-UniCredit S.p.a. (2/8/2024)

Data Subjects Rights, Integrity and confidentiality, Principles

Data Protection Authority of Baden-Wuerttemberg-Pizza delivery service (7/15/1905)

Integrity and confidentiality, Principles

Polish National Personal Data Protection Office (UODO)-Unknown (1/18/2024)

Controllers and Processors, Data Breaches, Data Subjects Rights

Spanish Data Protection Authority (aepd)-ENDESA ENERGÍA, S.A.U. (10/25/2023)

Data Breaches, Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-CAIXABANK, S.A. (10/26/2023)

Controllers and Processors, Data Subjects Rights, Integrity and confidentiality, Principles, Technical and Organisational Measures (TOMs)

Polish National Personal Data Protection Office (UODO)-Disciplinary officer (4/20/2023)

Controllers and Processors, Integrity and confidentiality, Principles, Privacy by Design, Representative, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-SOLAR PROGRESS, S.L. (12/7/2023)

Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-Homeowners’ association (11/7/2023)

Data Subjects Rights, Integrity and confidentiality, Principles

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Hora Credit IFN SA (12/7/2023)

Controllers and Processors, Data Breaches, Data Subjects Rights, Technical and Organisational Measures (TOMs)

Polish National Personal Data Protection Office (UODO)-Link4 Towarzystwo Ubezpieczeń S. A. (10/8/2023)

Controllers and Processors, Data Breaches

Spanish Data Protection Authority (aepd)-FORO ASTURIAS (11/16/2023)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-Pharmacy owner (11/24/2023)

Data Subjects Rights, Integrity and confidentiality, Principles

Norwegian Supervisory Authority (Datatilsynet)-Norwegian Labor and Welfare Administration (11/27/2023)

Controllers and Processors, Integrity and confidentiality, Principles, Privacy by Design, Representative, Technical and Organisational Measures (TOMs)

Polish National Personal Data Protection Office (UODO)-Company (7/18/2023)

Controllers and Processors, Integrity and confidentiality, Principles, Privacy by Design, Representative, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-THE BEE LOGISTICS, S.L. (11/7/2023)

Data Subjects Rights, Integrity and confidentiality, Principles

Italian Data Protection Authority (Garante)-Asl Napoli 3 Sud (9/28/2023)

Controllers and Processors, Data Subjects Rights, Integrity and confidentiality, Principles, Technical and Organisational Measures (TOMs)

Polish National Personal Data Protection Office (UODO)-Company (7/12/2023)

Controllers and Processors, Data Breaches, Data Subjects Rights

Italian Data Protection Authority (Garante)-Azienda Socio Sanitaria Territoriale Ovest Milanese (7/18/2023)

Controllers and Processors, Integrity and confidentiality, Principles, Sensitive Data, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-ILUNION SEGURIDAD, S.A. (10/10/2023)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-NORDETIA CLINICS MÓSTOLES S.L. (10/10/2023)

Data Subjects Rights, Integrity and confidentiality, Principles

Data Protection Authority of Sweden-Trygg-Hansa (8/28/2023)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-Homeowners’ association (8/25/2023)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-ALBEN AIRPORT FACILITIES S.L. (8/29/2023)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-WALL BOX CHARGERS S.L. (8/28/2023)

Data Subjects Rights, Integrity and confidentiality, Principles

Polish National Personal Data Protection Office (UODO)-Company (5/31/2023)

Controllers and Processors, Integrity and confidentiality, Principles, Privacy by Design, Representative, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-RCL CRUISES LTD (7/7/2023)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-LISMARTSA, S.L. (7/5/2023)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-Private individual (6/6/2023)

Data Subjects Rights, Integrity and confidentiality, Principles

Polish National Personal Data Protection Office (UODO)-Municipality (5/16/2023)

Controllers and Processors, Integrity and confidentiality, Principles, Privacy by Design, Representative, Technical and Organisational Measures (TOMs)

Icelandic data protection authority (‘Persónuvernd’)-Sjúkratyringur Íslands (6/28/2023)

Controllers and Processors, Data Subjects Rights, Integrity and confidentiality, Principles, Technical and Organisational Measures (TOMs)

Icelandic data protection authority (‘Persónuvernd’)-Heilsuveru (7/3/2023)

Data Subjects Rights, Integrity and confidentiality, Principles, Technical and Organisational Measures (TOMs)

Polish National Personal Data Protection Office (UODO)-Municipality (5/5/2023)

Controllers and Processors, Integrity and confidentiality, Principles, Privacy by Design, Representative, Technical and Organisational Measures (TOMs)

Data Protection Commissioner of Malta-Unknown (7/14/1905)

Integrity and confidentiality, Principles, Representative

Spanish Data Protection Authority (aepd)-PELAYO, MUTUA DE SEGUROS Y REASEGUROS A PRIMA FIJA (6/1/2023)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-UNITED PARCEL SERVICE ESPAÑA LTD. Y CIA SRC (6/7/2023)

Data Subjects Rights, Integrity and confidentiality, Principles

Data Protection Commissioner of Malta-Unknown (7/12/1905)

Data Subjects Rights, Integrity and confidentiality, Principles

Italian Data Protection Authority (Garante)-Bolzano municipality (3/23/2023)

Controllers and Processors, Data Breaches, Data Subjects Rights, Integrity and confidentiality, Principles, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Informatica Alto Adige Spa (3/23/2023)

Data Subjects Rights, Integrity and confidentiality, Principles

Data Protection Commissioner of Malta-Unknown (7/12/1905)

Data Subjects Rights, Integrity and confidentiality, Principles

Polish National Personal Data Protection Office (UODO)-Company (2/8/2023)

Controllers and Processors, Integrity and confidentiality, Principles, Privacy by Design, Representative, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-Homeowners’ association (5/5/2023)

Integrity and confidentiality, Principles

Cypriot Data Protection Commissioner-NAGA Markets Europe Ltd (5/2/2023)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-ASSOCIACIO DE CAÇADORS D’ALZIRA (4/28/2023)

Integrity and confidentiality, Principles

Hellenic Data Protection Authority (HDPA)-Piraeus Bank (2/2/2023)

Data Breaches, Lawfulness of Processing, Principles, Sensitive Data

Polish National Personal Data Protection Office (UODO)-Housing cooperative (3/1/2023)

Controllers and Processors, Data Breaches, Data Subjects Rights

Italian Data Protection Authority (Garante)-Azienda Ospedale-Università Padova (1/11/2023)

Integrity and confidentiality, Principles, Sensitive Data

Data Protection Authority of Bremen-Company (7/14/1905)

Controllers and Processors, Data Breaches

Norwegian Supervisory Authority (Datatilsynet)-Argon Medical Devices (3/8/2023)

Controllers and Processors, Data Breaches

Polish National Personal Data Protection Office (UODO)-Szczecin-Centrum District Court (1/19/2023)

Controllers and Processors, Integrity and confidentiality, Principles, Privacy by Design, Representative, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-Private individual (3/16/2023)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-Attorney (2/27/2023)

Controllers and Processors, Integrity and confidentiality, Principles, Representative

Italian Data Protection Authority (Garante)-Azienda ULSS n.5 Polesana (1/26/2023)

Integrity and confidentiality, Principles, Sensitive Data

Data Protection Authority of Ireland-Bank of Ireland 365 (2/27/2023)

Data Subjects Rights, Integrity and confidentiality, Principles

Data Protection Authority of Ireland-Centric Health Ltd. (1/23/2023)

Controllers and Processors, Integrity and confidentiality, Principles, Representative, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-Private individual (2/21/2023)

Data Subjects Rights, Integrity and confidentiality, Principles

Data Protection Authority of Baden-Wuerttemberg-Pharmacy (7/14/1905)

Integrity and confidentiality, Principles

Cypriot Data Protection Commissioner-Bank of Cyprus Public Company Ltd. (7/14/1905)

Controllers and Processors, Data Subjects Rights, Integrity and confidentiality, Principles, Technical and Organisational Measures (TOMs)

Cypriot Data Protection Commissioner-Cyprus Electricity Authority (7/14/1905)

Controllers and Processors, Data Subjects Rights, Integrity and confidentiality, Principles, Technical and Organisational Measures (TOMs)

Data Protection Authority of Sachsen-Anhalt-Magdeburg University Hospital (7/15/1905)

Controllers and Processors, Data Breaches

Italian Data Protection Authority (Garante)-Azienda Ospedaliero-Universitaria Careggi di Firenze (10/20/2022)

Integrity and confidentiality, Principles, Sensitive Data

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Dent Estet Clinic SA (1/31/2023)

Controllers and Processors, Data Breaches

Data Protection Authority of Ireland-VIEC Limited (12/22/2022)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-Transport Workers’ Union of Aragon (1/3/2023)

Data Subjects Rights, Integrity and confidentiality, Principles

Italian Data Protection Authority (Garante)-I.S.P.R.O. (10/20/2022)

Integrity and confidentiality, Principles, Sensitive Data

Spanish Data Protection Authority (aepd)-Property owner administrative board (12/20/2022)

Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-INDECEMI, S.L. (12/3/2022)

Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-CASA 7 PERSONAL SHOPPER, S.L. (12/2/2022)

Data Subjects Rights, Integrity and confidentiality, Principles

Data Protection Authority of Ireland-Slane Credit Union Ltd. (1/26/2022)

Data Processing Agreement (DPA), Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-UNITED PARCEL SERVICE ESPAÑA LTD Y COMPAÑIA SRC (11/3/2022)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-Banco Bilbao Vizcaya Argentaria S.L. (11/11/2022)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-BANKINTER, S.A. (11/15/2022)

Data Subjects Rights, Integrity and confidentiality, Principles

Polish National Personal Data Protection Office (UODO)-Mayor (11/2/2022)

Controllers and Processors, Integrity and confidentiality, Principles, Privacy by Design, Representative, Technical and Organisational Measures (TOMs)

Information Commissioner (ICO)-Interserve Group Limited (10/19/2022)

Data Subjects Rights, Integrity and confidentiality, Principles

Italian Data Protection Authority (Garante)-Servizio Idrico Integrato S.c.p.a. (10/6/2022)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-OES GLOBAL ENERGY S.L. (10/17/2022)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-EL RACO DEL PIS INVERSIONES S.L. (10/25/2022)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-URBANO DIVERTIA, S.L. (9/23/2022)

Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-Vodafone España, S.A.U. (10/31/2022)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-RESTEXPERIENCE, S.L. (10/19/2022)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-Club Náutico el Estacio (10/4/2022)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-PUNTO BADAL-BCN S.L. (10/9/2022)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-Private individual (10/9/2022)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-EVERIS SPAIN S.L (10/9/2022)

Data Subjects Rights, Integrity and confidentiality, Principles

Belgian Data Protection Authority (APD)-Medical laboratory (8/19/2022)

Data Subjects Rights, Integrity and confidentiality

Spanish Data Protection Authority (aepd)-BAYARD REVISTAS, S.A. (9/28/2022)

Controllers and Processors, Data Breaches, Data Subjects Rights, Integrity and confidentiality, Principles

Italian Data Protection Authority (Garante)-Azienda Socio Sanitaria Territoriale Rhodense (7/21/2022)

Data Subjects Rights, Integrity and confidentiality, Principles

Danish Data Protection Authority (Datatilsynet)-Danish Immigration Agency (8/17/2021)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-NATURGY ENERGY GROUP, S.A. (8/28/2022)

Data Subjects Rights, Integrity and confidentiality, Principles

Hellenic Data Protection Authority (HDPA)-Private Polyclinic and Diagnostic Centre of Pyle Axiou (8/3/2022)

Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-UNONO NET 3.0, S.L. (8/22/2022)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-FREE SUN ENERGY S.L. (7/12/2022)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-JAÉN SENTIDO Y COMÚN (8/4/2022)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-ESTUDIOS EUROPEOS DE POSTGRADO Y EMPRESA, S.L. (7/29/2022)

Data Subjects Rights, Integrity and confidentiality, Principles

Polish National Personal Data Protection Office (UODO)-University Hospital of the Medical University of Warsaw (7/6/2022)

Controllers and Processors, Data Breaches, Data Subjects Rights

Spanish Data Protection Authority (aepd)-Homeowners Association (7/26/2022)

Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-EFS MANTENIMIENTO Y SERVICIOS TÉCNICOS, S.L. (7/26/2022)

Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-DKV Seguros y Reaseguros, S.A.E. (7/13/2022)

Controllers and Processors, Data Breaches, Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-Bookstore employee (7/19/2022)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-BANKINTER, S.A. (7/18/2022)

Integrity and confidentiality, Principles

Polish National Personal Data Protection Office (UODO)-Głównego Geodetę Kraju (7/6/2022)

Controllers and Processors, Data Breaches, Data Subjects Rights

Italian Data Protection Authority (Garante)-Azienda Socio Sanitaria Territoriale Dei Sette Laghi (5/22/2022)

Controllers and Processors, Integrity and confidentiality, Principles, Sensitive Data, Technical and Organisational Measures (TOMs)

Information Commissioner (ICO)-Tavistock & Portman NHS Foundation Trust (6/9/2022)

Data Subjects Rights, Integrity and confidentiality, Principles

Norwegian Supervisory Authority (Datatilsynet)-Norwegian Parliament (3/4/2022)

Data Subjects Rights, Integrity and confidentiality, Principles

Italian Data Protection Authority (Garante)-Ospedale San Raffaele s.r.l. (4/28/2022)

Integrity and confidentiality, Principles, Sensitive Data

Polish National Personal Data Protection Office (UODO)-Esselmann Technika Pojazdowa Sp. z o.o. Sp. k. (6/6/2022)

Controllers and Processors, Data Breaches

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Kredyt Inkaso Investments RO S.A (5/18/2022)

Controllers and Processors, Data Breaches, Principles, Representative, Sensitive Data

Spanish Data Protection Authority (aepd)-LABORATORIOS GONZÁLEZ, S.L. (4/29/2022)

Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-CAFFE VECCHIO, S.L. (4/28/2022)

Controllers and Processors, Integrity and confidentiality, Principles, Representative

Italian Data Protection Authority (Garante)-Brav s.r.l. (3/24/2022)

Data Subjects Rights, Integrity and confidentiality, Principles

Italian Data Protection Authority (Garante)-ASST di Lodi (4/26/2022)

Controllers and Processors, Integrity and confidentiality, Principles, Sensitive Data, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-Homeowners Association (4/12/2022)

Integrity and confidentiality, Principles

Hellenic Data Protection Authority (HDPA)-Piraeus Bank (4/4/2022)

Data Subjects Rights, Integrity and confidentiality, Principles

Polish National Personal Data Protection Office (UODO)-Fortum Marketing and Sales Polska S.A. (1/19/2022)

Controllers and Processors, Data Processing Agreement (DPA), Data Subjects Rights, Integrity and confidentiality, Principles, Privacy by Design

Polish National Personal Data Protection Office (UODO)-Santander Bank Polska S. A. (1/19/2022)

Controllers and Processors, Data Breaches

Italian Data Protection Authority (Garante)-Azienda socio sanitaria territoriale Melegnano e della Martesana (2/10/2022)

Integrity and confidentiality, Principles, Sensitive Data

Italian Data Protection Authority (Garante)-Azienda sanitaria unica regionale Marche (1/13/2022)

Controllers and Processors, Data Protection Impact Assessment (DPIA), Data Subjects Rights, Integrity and confidentiality, Principles

Italian Data Protection Authority (Garante)-ASL Latina (12/17/2021)

Controllers and Processors, Integrity and confidentiality, Principles, Representative, Sensitive Data

Spanish Data Protection Authority (aepd)-Vodafone España, S.A.U. (2/1/2022)

Controllers and Processors, Integrity and confidentiality, Principles, Representative

Spanish Data Protection Authority (aepd)-ORANGE ESPAÑA VIRTUAL, S.L. (2/1/2022)

Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-Orange Espagne S.A.U. (2/1/2022)

Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-XFERA MÓVILES, S.A. (2/1/2022)

Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-TELEFÓNICA MÓVILES ESPAÑA, S.A.U. (2/1/2022)

Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-PHARMA TALENTS, S.L.U. (1/14/2022)

Data Subjects Rights, Integrity and confidentiality, Principles

Italian Data Protection Authority (Garante)-Azienda USL di Parma (12/2/2021)

Integrity and confidentiality, Principles, Sensitive Data

Deputy Data Protection Ombudsman-Travel agency (12/16/2021)

Controllers and Processors, Data Subjects Rights, Integrity and confidentiality, Principles, Privacy by Design, Technical and Organisational Measures (TOMs)

Data Protection Authority of Sweden (Integritetsskyddsmyndigheten)-Uppsala hospital board (1/26/2022)

Data Subjects Rights, Integrity and confidentiality, Principles

Data Protection Authority of Ireland-Irish Teacher Council (12/2/2021)

Controllers and Processors, Data Breaches, Data Subjects Rights, Principles

Hellenic Data Protection Authority (HDPA)-Greek Ministry of Tourism (12/29/2021)

Controllers and Processors, Data Breaches, Data Protection Officer (DPO), Data Subjects Rights

Polish National Personal Data Protection Office (UODO)-Warsaw University of Technology (12/9/2021)

Controllers and Processors, Integrity and confidentiality, Principles, Privacy by Design, Representative, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Società Med Store Saronno s.r.l. (12/2/2021)

Data Subjects Rights, Integrity and confidentiality, Principles

Italian Data Protection Authority (Garante)-Casa di cura Fondazione Gaetano e Piera Borghi s.r.l. (12/2/2021)

Data Subjects Rights, Integrity and confidentiality, Principles

Italian Data Protection Authority (Garante)-Società H San Raffaele Resnati s.r.l. (11/25/2021)

Integrity and confidentiality, Principles, Sensitive Data

Data Protection Commissioner of Malta-C-Planet (IT Solutions) Limited (1/17/2022)

Integrity and confidentiality, Principles, Representative

Italian Data Protection Authority (Garante)-Ica s.r.l. (12/2/2021)

Data Subjects Rights, Integrity and confidentiality, Principles

Deputy Data Protection Ombudsman-Psykoterapiakeskus Vastaamo (12/7/2021)

Controllers and Processors, Data Breaches, Data Subjects Rights, Integrity and confidentiality, Principles

Information Commissioner (ICO)-Cabinet Office (11/25/2021)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-ASOCIACIÓN ESPAÑOLA PARA LA ENSEÑANZA ONLINE (11/30/2021)

Data Subjects Rights, Right to Erasure

Spanish Data Protection Authority (aepd)-ASOCIACIÓN ESPAÑOLA PARA LA ENSEÑANZA ONLINE (11/30/2021)

Data Subjects Rights, Right to Erasure

Polish National Personal Data Protection Office (UODO)-Bank Millennium S.A (10/14/2021)

Controllers and Processors, Data Breaches, Data Subjects Rights

Information Commissioner (ICO)-HIV Scotland (10/18/2021)

Data Subjects Rights, Integrity and confidentiality, Principles

Data Protection Authority of Ireland-MOVE Ireland (8/20/2021)

Data Subjects Rights, Integrity and confidentiality, Principles

National Commission for Data Protection (CNPD)-Insurance company (8/5/2021)

Controllers and Processors, Data Breaches, Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-Vodafone España, S.A.U. (10/13/2021)

Data Subjects Rights, Integrity and confidentiality, Principles

Austrian Data Protection Authority (dsb)-Bank (7/13/1905)

Data Subjects Rights, Integrity and confidentiality, Principles

Norwegian Supervisory Authority (Datatilsynet)-Østre Toten municipality (10/18/2021)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-CEDICO, CENTRO DE DIAGNÓSTICO POR LA IMÁGEN, S.L. (9/20/2021)

Integrity and confidentiality, Principles

Norwegian Supervisory Authority (Datatilsynet)-Ferde AS (9/27/2021)

Controllers and Processors, Data Processing Agreement (DPA), Integrity and confidentiality, Principles, Representative

Spanish Data Protection Authority (aepd)-Automecanica Jerez, S.L. (9/2/2021)

Data Subjects Rights, Integrity and confidentiality, Principles

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Actamedica SRL (8/24/2021)

Controllers and Processors, Data Breaches, Data Processing Agreement (DPA), Data Subjects Rights

Italian Data Protection Authority (Garante)-Aeroporto Guglielmo Marconi di Bologna S.p.a. (6/10/2021)

Controllers and Processors, Data Subjects Rights, Integrity and confidentiality, Principles, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-DESPACHO TEJEDOR INFANTES CONSULTORES ASESORES (8/10/2021)

Integrity and confidentiality, Principles

Polish National Personal Data Protection Office (UODO)-President of the Zgierz District Court (8/13/2021)

Data Subjects Rights, Integrity and confidentiality, Principles, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-UST GLOBAL ESPAÑA, S.A. (7/27/2021)

Integrity and confidentiality, Principles

Polish National Personal Data Protection Office (UODO)-Fundację Promocji Mediacji i Edukacji Prawnej Lex Nostra (6/30/2021)

Controllers and Processors, Data Breaches, Data Subjects Rights

Italian Data Protection Authority (Garante)-Azienda Usl della Romagna (5/27/2021)

Integrity and confidentiality, Principles, Sensitive Data

Spanish Data Protection Authority (aepd)-UNIVERSIDAD A DISTANCIA DE MADRID, S.A. (7/29/2021)

Data Subjects Rights, Right to Erasure

Polish National Personal Data Protection Office (UODO)-Sopockie Towarzystwo Ubezpieczeń ERGO Hestia S.A. (6/21/2021)

Controllers and Processors, Data Breaches, Data Subjects Rights

Information Commissioner (ICO)-Mermaids (7/5/2021)

Data Subjects Rights, Integrity and confidentiality, Principles

Polish Data Protection Authority (UODO)-Cyfrowy Polsat S.A. (4/22/2021)

Controllers and Processors, Data Breaches, Data Subjects Rights, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Comune di Palermo (4/15/2021)

Controllers and Processors, Data Subjects Rights, Integrity and confidentiality, Principles, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-Desolasol Restauración, S.L. (5/25/2021)

Integrity and confidentiality, Principles

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Budapest Főváros Kormányhivatala XI. kerületi Hivatalát (11th District Public Health Department of the Government Office of the Capital City Budapest) (3/24/2021)

Controllers and Processors, Data Breaches, Sensitive Data, Technical and Organisational Measures (TOMs)

Dutch Supervisory Authority for Data Protection (AP)-PVV Overijssel (6/16/2020)

Controllers and Processors, Data Breaches

Belgian Data Protection Authority (APD)-Financial company (4/26/2021)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-Pagamastarde S.L. (4/27/2021)

Data Subjects Rights, Right to Erasure

Dutch Supervisory Authority for Data Protection (AP)-Booking.com B.V. (12/10/2020)

Controllers and Processors, Data Breaches

Spanish Data Protection Authority (aepd)-Asesoría Alpi-Clúa S.L. (3/18/2021)

Data Subjects Rights, Integrity and confidentiality, Principles

Polish National Personal Data Protection Office (UODO)-Enea S.A. (1/11/2021)

Controllers and Processors, Data Breaches

Spanish Data Protection Authority (aepd)-Homeowners Association (3/9/2021)

Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-Hospital Campogrande DE (3/10/2021)

Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-Xfera Moviles S.A. (3/10/2021)

Controllers and Processors, Data Subjects Rights, Integrity and confidentiality, Principles, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Azienda Ospedaliero Universitaria di Parma (1/27/2021)

Integrity and confidentiality, Principles, Sensitive Data

Italian Data Protection Authority (Garante)-Azienda Usl di Bologna (1/14/2021)

Integrity and confidentiality, Principles, Sensitive Data

Polish National Personal Data Protection Office (UODO)-Krajowa Szkoła Sądownictwa i Prokuratury (2/11/2021)

Controllers and Processors, Data Processing Agreement (DPA), Data Subjects Rights, Integrity and confidentiality, Principles, Technical and Organisational Measures (TOMs)

Polish National Personal Data Protection Office (UODO)-Unknown (1/5/2021)

Controllers and Processors, Data Breaches

Data Protection Authority of Ireland-University College Dublin (12/17/2020)

Controllers and Processors, Data Breaches, Principles, Sensitive Data, Storage limitation, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-IDFINANCE Spain, S.L. (2/1/2021)

Integrity and confidentiality, Principles

Italian Data Protection Authority (Garante)-Agenzia regionale protezione ambientale Campania (ARPAC) (1/14/2021)

Data Subjects Rights, Integrity and confidentiality, Principles

Italian Data Protection Authority (Garante)-Azienda Ospedaliero Universitaria Senese (1/27/2021)

Integrity and confidentiality, Principles, Sensitive Data

Polish National Personal Data Protection Office (UODO)-Śląski Uniwersytet Medyczny (Medical University of Silesia) (1/5/2021)

Controllers and Processors, Data Breaches, Data Subjects Rights

Belgian Data Protection Authority (APD)-Unknown (1/22/2021)

Controllers and Processors, Integrity and confidentiality, Principles, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Azienda Unità Sanitaria Locale Toscana Sud Est (12/17/2020)

Controllers and Processors, Data Processing Agreement (DPA), Data Subjects Rights, Integrity and confidentiality, Principles

Polish National Personal Data Protection Office (UODO)-Towarzystwo Ubezpieczeń i Reasekuracji WARTA S.A. (12/28/2020)

Controllers and Processors, Data Breaches, Data Subjects Rights

Polish National Personal Data Protection Office (UODO)-TUiR Warta S.A. (12/9/2020)

Controllers and Processors, Data Breaches, Data Subjects Rights

Polish National Personal Data Protection Office (UODO)-ID Finance Poland Sp. z o.o. (12/17/2020)

Data Subjects Rights, Integrity and confidentiality, Principles, Technical and Organisational Measures (TOMs)

Data Protection Authority of Ireland-Twitter International Company (12/15/2020)

Controllers and Processors, Data Breaches

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Robinson Tours Ltd. (Robinson Tours Idegenforgalmi és Szolgáltató Kft.) (12/16/2020)

Controllers and Processors, Data Breaches, Lawfulness of Processing, Performance of Contract, Principles, Privacy by Design

Data Protection Authority of Sweden (Integritetsskyddsmyndigheten)-Umeå University (12/11/2020)

Integrity and confidentiality, Principles

Polish National Personal Data Protection Office (UODO)-Virgin Mobile Polska (12/14/2020)

Integrity and confidentiality, Principles

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Banca Transilvania SA (12/17/2020)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-Comercio Online Levante, S.L. (12/2/2020)

Data Subjects Rights, Integrity and confidentiality, Principles

Data Protection Authority of Sweden (Integritetsskyddsmyndigheten)-Aleris Sjukvård AB (12/3/2020)

Integrity and confidentiality, Principles

Data Protection Authority of Sweden (Integritetsskyddsmyndigheten)-Aleris Sjukvård AB (12/3/2020)

Integrity and confidentiality, Principles

Data Protection Authority of Sweden (Integritetsskyddsmyndigheten)-Östergötland Region (12/3/2020)

Integrity and confidentiality, Principles

Data Protection Authority of Sweden (Integritetsskyddsmyndigheten)-Västerbotten Region (12/3/2020)

Integrity and confidentiality, Principles

Data Protection Authority of Sweden (Integritetsskyddsmyndigheten)-Sahlgrenska University Hospital (12/3/2020)

Integrity and confidentiality, Principles

Data Protection Authority of Sweden (Integritetsskyddsmyndigheten)-Karolinska University Hospital of Solna (12/3/2020)

Integrity and confidentiality, Principles

Data Protection Authority of Sweden (Integritetsskyddsmyndigheten)-Capio St. Göran AB (12/3/2020)

Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-Losada Advocats S.L. (12/2/2020)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-Unknown (12/9/2020)

Integrity and confidentiality, Principles

Cypriot Data Protection Commissioner-Bank of Cyprus Public Company Ltd (10/19/2020)

Access Requests (DSAR), Controllers and Processors, Data Subjects Rights, Integrity and confidentiality, Principles, Representative, Technical and Organisational Measures (TOMs)

Information Commissioner (ICO)-Ticketmaster UK Limited (11/13/2020)

Data Subjects Rights, Integrity and confidentiality, Principles

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Sanatatea Press Group S.R.L. (9/8/2020)

Data Subjects Rights, Integrity and confidentiality, Principles

Italian Data Protection Authority (Garante)-Istituto Comprensivo Statale Crucoli Torretta (9/7/2020)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-Caja Rural San José de Nules S. Cooperativa de Crédito (10/9/2020)

Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-Barcelona Airport Security Guard Association (‘AVSAB’) (9/7/2020)

Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-Saunier-Tec Mantenimientos de Calor y Frio, SL. (7/2/2020)

Controllers and Processors, Data Breaches

Danish Data Protection Authority (Datatilsynet)-Lejre Municipality (6/30/2020)

Controllers and Processors, Data Breaches, Principles, Representative

Data Protection Authority of Ireland-Tusla Child and Family Agency (6/30/2020)

Controllers and Processors, Data Breaches

Spanish Data Protection Authority (aepd)-Xfera Moviles S.A. (6/9/2020)

Integrity and confidentiality, Principles

Norwegian Supervisory Authority (Datatilsynet)-Bergen Municipality (9/3/2020)

Data Subjects Rights, Integrity and confidentiality, Principles

Data Protection Authority of Sweden (Integritetsskyddsmyndigheten)-National Government Service Centre (NGSC) (4/29/2020)

Controllers and Processors, Data Breaches, Data Subjects Rights

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Directorate of Social and Child Welfare Institutions of the Ferencvaros District of Budapest (5/21/2019)

Controllers and Processors, Data Breaches

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Vodafone Romania (2/11/2020)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-Centro De Estudio Dirigidos Delta, S.L. (3/16/2020)

Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-Vodafone España, S.A.U. (3/3/2020)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-Gesthotel Activos Balagares (3/9/2020)

Integrity and confidentiality, Principles

Danish Data Protection Authority (Datatilsynet)-Hørsholm Municipality (3/10/2020)

Data Subjects Rights, Integrity and confidentiality, Principles

Danish Data Protection Authority (Datatilsynet)-Gladsaxe Municipality (3/10/2020)

Data Subjects Rights, Integrity and confidentiality, Principles

Icelandic data protection authority (‘Persónuvernd’)-National Center of Addiction Medicine (‘SAA’) (3/10/2020)

Data Subjects Rights, Integrity and confidentiality, Principles

Icelandic data protection authority (‘Persónuvernd’)-Breiðholt Upper Secondary School (3/10/2020)

Data Subjects Rights, Integrity and confidentiality, Principles

Norwegian Supervisory Authority (Datatilsynet)-Rælingen Municipality (2/26/2020)

Data Subjects Rights, Integrity and confidentiality, Principles

Data Protection Authority of Hamburg-Hamburger Verkehrsverbund GmbH (HVV GmbH) (7/11/1905)

Controllers and Processors, Data Breaches, Data Subjects Rights

Spanish Data Protection Authority (aepd)-Grupo Valsor Y Losan, S.L. (2/14/2020)

Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-Vodafone España, S.A.U. (2/14/2020)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-Xfera Moviles S.A. (2/14/2020)

Data Subjects Rights, Integrity and confidentiality, Principles

Italian Data Protection Authority (Garante)-Azienda Ospedaliero Universitaria Integrata di Verona (Hospital) (1/23/2020)

Data Subjects Rights, Integrity and confidentiality, Principles

Italian Data Protection Authority (Garante)-Sapienza Università di Roma (1/23/2020)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-AEMA Hispánica (2/28/2020)

Integrity and confidentiality, Principles

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Hora Credit IFN SA (12/10/2019)

Controllers and Processors, Data Breaches, Data Subjects Rights, Principles, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-Vodafone España, S.A.U. (1/7/2020)

Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-Vodafone España, S.A.U. (10/23/2019)

Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-VODAFONE ONO, S.A.U. (7/11/1905)

Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-Vodafone España, S.A.U. (7/11/1905)

Data Subjects Rights, Integrity and confidentiality, Principles

Slovak Data Protection Office-Unknown (Unknown)

Data Subjects Rights, Integrity and confidentiality, Principles

Slovak Data Protection Office-Unknown (Unknown)

Data Subjects Rights, Integrity and confidentiality, Principles

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Unknown (6/25/2019)

Controllers and Processors, Data Breaches

Norwegian Supervisory Authority (Datatilsynet)-Bergen Municipality (3/1/2019)

Data Subjects Rights, Integrity and confidentiality, Principles

Portuguese Data Protection Authority (CNPD)-Public Hospital (7/17/2018)

Data Subjects Rights, Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-Debt collecting agancy (GESTIÓN DE COBROS, YO COBRO SL) (Unknown)

Integrity and confidentiality, Principles

Spanish Data Protection Authority (aepd)-ENDESA (energy supplyer) (Unknown)

Integrity and confidentiality, Principles

Information Commissioner (ICO)-British Airways (10/16/2020)

Data Subjects Rights, Integrity and confidentiality, Principles

Data Protection Authority of Hamburg-Unknown (7/10/1905)

Controllers and Processors, Data Breaches, Data Subjects Rights

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Hungarian political party (4/5/2019)

Controllers and Processors, Data Breaches, Data Subjects Rights

Lithuanian Data Protection Authority (VDAI)-Payment service provider UAB MisterTango (5/16/2019)

Controllers and Processors, Data Breaches, Data Subjects Rights, Principles

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Unnamed financial institution (3/4/2019)

Controllers and Processors, Data Subjects Rights, Principles, Purpose limitation, Representative, Right to Erasure

Case C‑21/23 CJEU (full text in german)

Controllers and Processors, Data Breaches, Health Data, Lawfulness of Processing, Principles, Sensitive Data

Press Release No 159/24 on Judgment of the Court in Case C-21/23 CJEU

Controllers and Processors, Data Breaches, Health Data, Lawfulness of Processing, Principles, Sensitive Data

Решение Рег.№ ППН-02-399-2019 КЗЛД – НАП

Controllers and Processors, Data Breaches, Lawfulness of Processing

Наказателно постановление-04-2019-КЗЛД-НАП

Controllers and Processors, Data Breaches, Lawfulness of Processing

Genetic Testing Company 23andMe Pays $30M for Data Breach

Data Breaches, Sensitive Data

Reprimand issued by the UK ICO concerning infringements of Article 5(1)(a), Article 6(1)(a) and Article 7(1) UK GDPR

Consent, Cookies, Lawfulness of Processing, Liability and Remedies

Opinion 37/2023 on the draft decision of the competent supervisory authority of Luxemburg regarding the approval of the requirements for accreditation of a certification body pursuant to Article 43.3 (GDPR) |EPDB

Certification, Controllers and Processors

Opinion 38/2023 on the draft decision of the competent supervisory authority of Slovenian regarding the approval of the requirements for accreditation of a certification body pursuant to Article 43.3 (GDPR). |EPDB

Certification, Controllers and Processors

PRESS RELEASE No 20/24 | Case C-118-22

Data Subjects Rights, Right to Erasure

Transparency and Consent Framework Policies by IAB Europe

Consent, Cookies, Lawfulness of Processing, Principles, Transparency

CASE STUDIES (2018 – 2023) by the Irish DPC

Access Requests (DSAR), Controllers and Processors, Data Breaches, Data Subjects Rights, Liability and Remedies, Supervisory Authorities

One-stop-shop case digest on Security of Processing and Data Breach Notification by the EDPB

Controllers and Processors, Data Breaches, Technical and Organisational Measures (TOMs)

A Guide to Cookies and Compliance by DMA

Consent, Cookies, Lawfulness of Processing

[DRAFT] Data Confidentiality – Identifying and Protecting Assets Against Data Breaches by NIST

Controllers and Processors, Data Breaches

Data breach preparation and response by the Australian Information Commisioners

Controllers and Processors, Data Breaches

Data Breach Process Guidance by HSE

Controllers and Processors, Data Breaches

C-460/20

Data Subjects Rights, Right to Erasure, Search Engines, Specific processing situations

One-Stop-Shop thematic case digest: RIGHT TO OBJECTAND RIGHT TO ERASURE

Data Subjects Rights, Right to Erasure, Right to Object

Study on the appropriate safeguards under Article 89(1) GDPR for the processing of personal data for scientific research

Material scope, Scientific Research, Specific processing situations

C-507/17

Data Subjects Rights, Right to Erasure, Territorial Scope

C-136/17

Data Subjects Rights, Principles, Right to Erasure, Search Engines, Sensitive Data, Specific processing situations

C-129/21

Consent, Data Subjects Rights, Lawfulness of Processing, Right to Erasure

Noyb Complaint Case: C-082-01 to EU Data protection Supervisor against EU Parliament

Controllers and Processors, Data Breaches, Public Administrative Body

Decision by Dutch Data Protection Authority to impose an administrative fine on Uber |English

Controllers and Processors, Data Breaches, Data Subjects Rights

Noyb Complaint Case: C-082-02 to EU Data protection Supervisor against EU Parliament

Controllers and Processors, Data Breaches, Public Administrative Body

NIST Special Publication_1800-29 Data Confidentiality- Detect, Respond to, and Recover from Data Breaches

Controllers and Processors, Data Breaches

Office of the Privacy Commissioner of Canada Sweep Report 2024

Consent, Cookies, Lawfulness of Processing

Global Third Party Cybersecurity Breaches by SecurityScorecard

Controllers and Processors, Data Breaches

Personal data breach report form

Controllers and Processors, Data Breaches

Opinion 1/2022 on the draft decision of the Luxembourg Supervisory Authority regarding the GDPR – CARPA certification criteria |EPDB

Certification, Controllers and Processors

Opinion 25/2022 regarding the European Privacy Seal (EuroPriSe ) certification criteria for the certification of processing operations by processors |EPDB

Certification, Controllers and Processors

Opinion 15/2023 on the draft decision of the Dutch Supervisory Authority regarding the Brand Compliance certification criteria |EPDB

Certification, Controllers and Processors

Opinion 28/2022 on the Europrivacy criteria of certification regarding their approval by the Board as European Data Protection Seal pursuant to Article 42.5 (GDPR) |EPDB

Certification, Controllers and Processors

Personal data breaches in the health sector: how to avoid them (and how to deal with them when they happen) by the UK ICO

Data Breaches, Health Data

Planet49 GmbH, C-673/17, Grand Chamber, 1 October 2019.

Consent, Cookies

Guidelines 01/2021 on Examples regarding Personal Data Breach Notification

Data Breaches

Guidelines 5/2019 on the criteria of the Right to be Forgotten in the search engines cases under the GDPR

Right to Erasure

Guidance on the rules on use of cookies and similar technologies [pdf] [Official Guidelines]

Consent, Cookies

Cookies Instructions Kit by DMA Italy, FedoWEB et al.

Consent, Cookies

Report of the work undertaken by the Cookie Banner Taskforce [Official EDPB Guidelines] [pdf]

Consent, Cookies

Guidelines 9/2022 on personal data breach notification under GDPR [Official EDPB Guidelines] [pdf]

Data Breaches

Building a Cybersecurity and Privacy Learning Program | NIST | Initial Public Draft

Data Breaches, Employment, Risk Management, Technical and Organisational Measures (TOMs)

A Guide to UK GDPR Principles | UK ICO

Accountability, Accuracy, Data minimisation, Integrity and confidentiality, Lawfulness of Processing, Principles, Purpose limitation, Storage limitation, Transparency

GDPR Data Incidents – The Step-by-Step Playbook for Effective Response

Data Breaches