Resources

Cyber Security Handbook for Small Business and Not-for-Profit Directors by Australian Information Security Association

Technical and Organisational Measures (TOMs)

Personal Data Breach Management and Reporting Toolkit Tracker

Data Breaches

Data Sharing Toolkit Tracker

Data Sharing

Training and Awareness Toolkit Tracker

Technical and Organisational Measures (TOMs)

Information & Cyber Security Checklist Tracker

Technical and Organisational Measures (TOMs)

Records Management Toolkit Tracker

Data Retention, Personal Data Collection, Records of processing Activities (ROPA)

Data Sharing Toolkit Tracker – more information about the Toolkit by UK ICO

Data Sharing

Personal Data Breach Management and Reporting Toolkit Tracker – more information about the Toolkit by UK ICO

Data Breaches

Records Management Toolkit Tracker – more information about the Toolkit by UK ICO

Data Retention, Personal Data Collection, Records of processing Activities (ROPA)

Information & Cyber Security Checklist Tracker – more information about the Toolkit by UK ICO

Technical and Organisational Measures (TOMs)

Training and Awareness Toolkit Tracker – more information about the Toolkit by UK ICO

Technical and Organisational Measures (TOMs)

Polish National Personal Data Protection Office (UODO)-National Prosecutor’s Office (9/2/2024)

Consent, Controllers and Processors, Data Breaches, Lawfulness of Processing, Principles, Sensitive Data

Dutch Supervisory Authority for Data Protection (AP)-Clearview AI Inc. (5/16/2024)

Controllers and Processors, Data Subjects Rights, Lawfulness of Processing, Principles, Representative, Sensitive Data

Data Protection Authority of Sweden (Integritetsskyddsmyndigheten)-Apoteket AB. (8/29/2024)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Data Protection Authority of Sweden (Integritetsskyddsmyndigheten)-Apohem AB (8/29/2024)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Polish National Personal Data Protection Office (UODO)-Company (5/20/2024)

Controllers and Processors, Integrity and confidentiality, Principles, Representative, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Rossi Carta S.r.l. (4/24/2024)

Access Requests (DSAR), Controllers and Processors, Data Protection Officer (DPO), Data Subjects Rights, Lawfulness of Processing

French Data Protection Authority (CNIL)-Municipality of Korou (7/22/2024)

Controllers and Processors, Cooperation with Supervisory Authorithy, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Municipality of Nepi (6/20/2024)

Controllers and Processors, Data Processing Agreement (DPA), Lawfulness of Processing, Representative

Spanish Data Protection Authority (aepd)-AXA REAL ESTATE INVESTMENT MANAGERS IBERICA S.A. y SEUR GEOPOST, S.L. (6/26/2024)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Lithuanian Data Protection Authority (VDAI)-Vinted (7/2/2024)

Controllers and Processors, Data Subjects Rights, Lawfulness of Processing, Representative

Hellenic Data Protection Authority (HDPA)-METRO SA (6/27/2024)

Access Requests (DSAR), Controllers and Processors, Data Subjects Rights, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Istituto Nazionale di Previdenza Sociale (4/11/2024)

Principles, Representative

Italian Data Protection Authority (Garante)-I.N.P.A.S. (4/24/2024)

Controllers and Processors, Lawfulness of Processing, Representative, Sensitive Data

Polish National Personal Data Protection Office (UODO)-Committee (4/24/2024)

Controllers and Processors, Integrity and confidentiality, Principles, Privacy by Design, Representative, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Medical association (5/9/2024)

Lawfulness of Processing, Representative

Italian Data Protection Authority (Garante)-Dly S.r.l. (4/24/2024)

Data Protection Officer (DPO), Lawfulness of Processing

Spanish Data Protection Authority (aepd)-PILLOW HOTELS, S.L. (5/30/2024)

Controllers and Processors, Data Breaches, Data Subjects Rights, Integrity and confidentiality, Principles

Polish National Personal Data Protection Office (UODO)-Association (4/30/2024)

Controllers and Processors, Data Breaches

Polish National Personal Data Protection Office (UODO)-Res-Gastro M. Gaweł Sp. k. (4/29/2024)

Controllers and Processors, Data Subjects Rights, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-DENTALCUADROS BCN S.L.P. (5/8/2024)

Controllers and Processors, Data Subjects Rights, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Libero Consorzio comunale di Enna (4/11/2024)

Data Protection Officer (DPO)

Italian Data Protection Authority (Garante)-Enel Energia SpA (2/8/2024)

Controllers and Processors, Integrity and confidentiality, Principles, Privacy by Design, Representative, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Mas s.r.l. (4/13/2023)

Consent, Controllers and Processors, Data Subjects Rights, Lawfulness of Processing, Representative

Italian Data Protection Authority (Garante)-Mas s.r.l.s. (4/13/2023)

Consent, Controllers and Processors, Lawfulness of Processing, Representative

Data Protection Authority of Hessen-Company (7/15/1905)

Controllers and Processors, Cooperation with Supervisory Authorithy

Croatian Data Protection Authority (azop)-Betting company (4/22/2024)

Consent, Data Protection Officer (DPO), Lawfulness of Processing

Croatian Data Protection Authority (azop)-Betting company (4/22/2024)

Consent, Data Protection Officer (DPO), Lawfulness of Processing

Data Protection Authority of Hamburg-Daycare center (7/15/1905)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-INFORMÁTICA MÉDICA, S.L. (11/7/2022)

Controllers and Processors, Data Processing Agreement (DPA)

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-ALPHA BANK ROMANIA SA. (4/23/2024)

Controllers and Processors, Data Processing Agreement (DPA), Data Subjects Rights

Italian Data Protection Authority (Garante)-Azienda sanitaria locale Roma 3 (3/21/2024)

Data Breaches

Polish National Personal Data Protection Office (UODO)-Toyota Bank Polska S.A. (3/12/2024)

Controllers and Processors, Data Breaches

Hellenic Data Protection Authority (HDPA)-Greek Ministry of Immigration and Asylum (4/2/2024)

Controllers and Processors, Data Protection Impact Assessment (DPIA), Data Subjects Rights, Principles, Privacy by Design

Spanish Data Protection Authority (aepd)-CTC EXTERNALIZACIÓN, S.L (2/12/2024)

Controllers and Processors, Data Protection Impact Assessment (DPIA), Data Subjects Rights

Italian Data Protection Authority (Garante)-Azienda socio-sanitaria locale n. 1 di Sassari (2/8/2024)

Controllers and Processors, Principles, Sensitive Data, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-URQUÍA & BAS, CORREDURÍA DE SEGUROS S.L. (6/22/2022)

Controllers and Processors, Data Breaches

Italian Data Protection Authority (Garante)-Camera di Commercio Industria Artigianato e Agricoltura (2/22/2024)

Lawfulness of Processing, Representative

Italian Data Protection Authority (Garante)-NTT Data Italia S.P.A (2/8/2024)

Controllers and Processors, Data Processing Agreement (DPA), Data Subjects Rights

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-EURO MINI STORAGE ROMANIA SRL (3/5/2024)

Controllers and Processors, Data Subjects Rights, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-HISPAPOST, S.A. (2/1/2024)

Controllers and Processors, Data Processing Agreement (DPA)

Polish National Personal Data Protection Office (UODO)-Insurance company (10/18/2023)

Controllers and Processors, Data Breaches

Polish National Personal Data Protection Office (UODO)-Santander Bank Polska S.A. (3/12/2024)

Controllers and Processors, Data Breaches, Data Subjects Rights

Polish National Personal Data Protection Office (UODO)-District Court Krakow (12/19/2023)

Data Breaches

Italian Data Protection Authority (Garante)-Municipality of Siracusa (1/31/2024)

Controllers and Processors, Data Protection Officer (DPO)

Italian Data Protection Authority (Garante)-Libero Consorzio comunale di Caltanissetta (1/31/2024)

Controllers and Processors, Data Protection Officer (DPO)

Italian Data Protection Authority (Garante)-Provincia di Catanzaro (1/31/2024)

Controllers and Processors, Data Protection Officer (DPO)

Italian Data Protection Authority (Garante)-Provincia di Sassari (1/31/2024)

Controllers and Processors, Data Protection Officer (DPO)

Belgian Data Protection Authority (APD)-Black Tiger Belgium (1/16/2024)

Controllers and Processors, Data Subjects Rights, Principles, Representative

Data Protection Authority of Bremen-Operator of a dating platform (7/15/1905)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Istituto Comprensivo Statale “F.S. Cabrini (1/24/2024)

Lawfulness of Processing, Representative

Hellenic Data Protection Authority (HDPA)-Ministry of Rural Development and Food (1/29/2024)

Controllers and Processors, Cooperation with Supervisory Authorithy, Technical and Organisational Measures (TOMs)

Hellenic Data Protection Authority (HDPA)-Municipality of Athens (1/29/2024)

Controllers and Processors, Cooperation with Supervisory Authorithy

Austrian Data Protection Authority (dsb)-Unknown (12/12/2023)

Controllers and Processors, Cooperation with Supervisory Authorithy, Data Subjects Rights

Polish National Personal Data Protection Office (UODO)-Unknown (1/18/2024)

Controllers and Processors, Data Breaches, Data Subjects Rights

Spanish Data Protection Authority (aepd)-CAIXABANK, S.A. (10/26/2023)

Controllers and Processors, Data Subjects Rights, Integrity and confidentiality, Principles, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-ENDESA ENERGÍA, S.A.U. (10/25/2023)

Data Breaches, Data Subjects Rights, Integrity and confidentiality, Principles

Italian Data Protection Authority (Garante)-Municipality (1/24/2024)

Lawfulness of Processing, Principles, Representative, Sensitive Data

Polish National Personal Data Protection Office (UODO)-Disciplinary officer (4/20/2023)

Controllers and Processors, Integrity and confidentiality, Principles, Privacy by Design, Representative, Technical and Organisational Measures (TOMs)

Dutch Supervisory Authority for Data Protection (AP)-International Card Services B.V. (1/15/2024)

Controllers and Processors, Data Protection Impact Assessment (DPIA)

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-TECHNINK LEB SRL (1/15/2024)

Controllers and Processors, Sensitive Data, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Limit Call S.r.l.s. (11/30/2023)

Accountability, Consent, Controllers and Processors, Data Subjects Rights, Lawfulness of Processing, Principles, Representative

Italian Data Protection Authority (Garante)-Sirio S.p.A. (12/7/2023)

Controllers and Processors, Data Subjects Rights, Lawfulness of Processing, Representative

French Data Protection Authority (CNIL)-AMAZON FRANCE LOGISTIQUE (1/23/2024)

Controllers and Processors, Data minimisation, Data Subjects Rights, Principles, Representative

Polish National Personal Data Protection Office (UODO)-Unknown (12/7/2023)

Controllers and Processors, Cooperation with Supervisory Authorithy, Representative

Polish National Personal Data Protection Office (UODO)-Unknown (12/21/2023)

Controllers and Processors, Cooperation with Supervisory Authorithy, Representative

Italian Data Protection Authority (Garante)-Homeowner administrator (10/26/2023)

Controllers and Processors, Lawfulness of Processing, Representative

French Data Protection Authority (CNIL)-Company (12/22/2023)

Principles, Purpose limitation

Icelandic data protection authority (‘Persónuvernd’)-Garðabær municipality (12/6/2023)

Controllers and Processors, Data Processing Agreement (DPA), Data Subjects Rights, Principles

Icelandic data protection authority (‘Persónuvernd’)-City of Hafnarfjörður (12/6/2023)

Controllers and Processors, Data Processing Agreement (DPA), Data Subjects Rights, Principles

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Hora Credit IFN SA (12/7/2023)

Controllers and Processors, Data Breaches, Data Subjects Rights, Technical and Organisational Measures (TOMs)

Icelandic data protection authority (‘Persónuvernd’)-City of Kópavogur (12/6/2023)

Controllers and Processors, Data Processing Agreement (DPA), Data Subjects Rights, Principles

French Data Protection Authority (CNIL)-Kourou municipality (12/12/2023)

Controllers and Processors, Cooperation with Supervisory Authorithy, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Region of Lombardy (10/26/2023)

Principles, Representative, Sensitive Data

Spanish Data Protection Authority (aepd)-QUALITY-PROVIDER S.A. (11/16/2023)

Consent, Controllers and Processors, Lawfulness of Processing, Representative

Spanish Data Protection Authority (aepd)-Eurocollege Oxford English Institute S.L. (11/17/2023)

Controllers and Processors, Data minimisation, Principles, Representative, Sensitive Data

Norwegian Supervisory Authority (Datatilsynet)-Norwegian Labor and Welfare Administration (11/27/2023)

Controllers and Processors, Integrity and confidentiality, Principles, Privacy by Design, Representative, Technical and Organisational Measures (TOMs)

Data Protection Authority of Sweden-Östersund Municipality’s Department for Children and Education (11/28/2023)

Controllers and Processors, Data Protection Impact Assessment (DPIA)

Polish National Personal Data Protection Office (UODO)-Link4 Towarzystwo Ubezpieczeń S. A. (10/8/2023)

Controllers and Processors, Data Breaches

Icelandic data protection authority (‘Persónuvernd’)-Reykjanesbær municipality (12/6/2023)

Controllers and Processors, Data Processing Agreement (DPA), Data Subjects Rights, Principles

Icelandic data protection authority (‘Persónuvernd’)-City of Reykjavik (12/6/2023)

Controllers and Processors, Data Processing Agreement (DPA), Data Subjects Rights, Principles

Dutch Supervisory Authority for Data Protection (AP)-Voorschoten municipality (11/2/2023)

Lawfulness of Processing, Representative

National Commission for Data Protection (CNPD)-Unknown (9/21/2023)

Data Subjects Rights, Principles, Purpose limitation, Sensitive Data

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-OTP BANK ROMANIA SA (11/3/2023)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Data Protection Authority of Sweden-Indcap AB (11/7/2023)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-APOLLONIA TOPCO, S.L. (11/2/2023)

Controllers and Processors, Data minimisation, Principles, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Azienda Usl Toscana centro (9/28/2023)

Controllers and Processors, Lawfulness of Processing, Sensitive Data, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Scionti Selezioni Superiori S.r.l. (10/12/2023)

Consent, Controllers and Processors, Lawfulness of Processing, Representative

Italian Data Protection Authority (Garante)-Compara Facile S.r.l. (7/18/2023)

Consent, Controllers and Processors, Lawfulness of Processing, Representative

Hellenic Data Protection Authority (HDPA)-Athens Urban Transport Organization (9/25/2023)

Controllers and Processors, Data Protection Impact Assessment (DPIA), Data Subjects Rights, Principles, Storage limitation

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Rompetrol Downstream SRL (11/13/2023)

Technical and Organisational Measures (TOMs)

Polish National Personal Data Protection Office (UODO)-Company (7/18/2023)

Controllers and Processors, Integrity and confidentiality, Principles, Privacy by Design, Representative, Technical and Organisational Measures (TOMs)

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Mensajero SRL (10/24/2023)

Controllers and Processors, Sensitive Data, Technical and Organisational Measures (TOMs)

Croatian Data Protection Authority (azop)-Debt collection company (10/5/2023)

Accountability, Controllers and Processors, Data Subjects Rights, Principles, Representative

Italian Data Protection Authority (Garante)-GFB One s.r.l. (9/14/2023)

Controllers and Processors, Data Subjects Rights, Lawfulness of Processing, Representative

Italian Data Protection Authority (Garante)-Axpo Italia Spa (9/28/2023)

Accountability, Controllers and Processors, Lawfulness of Processing, Principles, Sensitive Data, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Asl Napoli 3 Sud (9/28/2023)

Controllers and Processors, Data Subjects Rights, Integrity and confidentiality, Principles, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-San Severo municipality (9/14/2023)

Lawfulness of Processing, Representative

Croatian Data Protection Authority (azop)-Betting company (9/14/2023)

Consent, Data Protection Officer (DPO), Lawfulness of Processing

Croatian Data Protection Authority (azop)-Betting company (9/14/2023)

Consent, Data Protection Officer (DPO), Lawfulness of Processing

French Data Protection Authority (CNIL)-SAF LOGISTICS (9/18/2023)

Controllers and Processors, Cooperation with Supervisory Authorithy, Data minimisation, Principles, Sensitive Data

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-RESTART ENERGY ONE S.A. (9/26/2023)

Controllers and Processors, Sensitive Data, Technical and Organisational Measures (TOMs)

Cypriot Data Protection Commissioner-Breikot Management Ltd (7/15/1905)

Controllers and Processors, Data minimisation, Principles, Representative

Italian Data Protection Authority (Garante)-Private individual (7/18/2023)

Controllers and Processors, Lawfulness of Processing, Representative

Polish National Personal Data Protection Office (UODO)-Company (7/12/2023)

Controllers and Processors, Data Breaches, Data Subjects Rights

Italian Data Protection Authority (Garante)-Azienda Socio Sanitaria Territoriale Ovest Milanese (7/18/2023)

Controllers and Processors, Integrity and confidentiality, Principles, Sensitive Data, Technical and Organisational Measures (TOMs)

Croatian Data Protection Authority (azop)-Hotel (9/26/2023)

Consent, Controllers and Processors, Lawfulness of Processing, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Autostrade per l’Italia spa (6/22/2023)

Controllers and Processors, Data Processing Agreement (DPA), Data Subjects Rights, Lawfulness of Processing

Italian Data Protection Authority (Garante)-Ermeslink di Giovanni Di Stefano (7/18/2023)

Controllers and Processors, Lawfulness of Processing, Representative

Italian Data Protection Authority (Garante)-Cat s.r.l. (7/18/2023)

Principles, Representative

Polish National Personal Data Protection Office (UODO)-Company (5/31/2023)

Controllers and Processors, Cooperation with Supervisory Authorithy, Representative

Polish National Personal Data Protection Office (UODO)-Company (1/25/2023)

Controllers and Processors, Cooperation with Supervisory Authorithy, Representative

Spanish Data Protection Authority (aepd)-FONTANORTE, S.L. (7/27/2023)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Camedi s.r.l. (6/1/2023)

Controllers and Processors, Principles, Sensitive Data, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-GYMOOGIMNASIOS S.L. (8/2/2023)

Controllers and Processors, Data minimisation, Data Protection Officer (DPO), Principles

Polish National Personal Data Protection Office (UODO)-Company (5/31/2023)

Controllers and Processors, Integrity and confidentiality, Principles, Privacy by Design, Representative, Technical and Organisational Measures (TOMs)

Polish National Personal Data Protection Office (UODO)-Company (6/2/2023)

Controllers and Processors, Cooperation with Supervisory Authorithy, Representative

Data Protection Authority of Ireland-Irish Departement of Health (6/16/2023)

Data minimisation, Principles, Representative, Sensitive Data

Italian Data Protection Authority (Garante)-Comune di Napoli (6/1/2023)

Lawfulness of Processing, Representative

Lithuanian Data Protection Authority (VDAI)-Company (4/20/2023)

Principles, Sensitive Data, Storage limitation, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-CaixaBank, S.A. (7/4/2023)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Università degli studi di Cassino e del Lazio Meridionale (4/27/2023)

Lawfulness of Processing, Representative

Italian Data Protection Authority (Garante)-La Risorsa Umana.it s.r.l. (3/23/2023)

Controllers and Processors, Data Processing Agreement (DPA), Data Subjects Rights, Lawfulness of Processing, Principles, Sensitive Data

Italian Data Protection Authority (Garante)-Ufficio Scolastico Regionale per la Puglia, Ufficio VI – Ambito Territoriale di Lecce (4/27/2023)

Controllers and Processors, Principles, Representative, Sensitive Data

Italian Data Protection Authority (Garante)-Comune di Cogollo del Cengio (4/13/2023)

Controllers and Processors, Principles, Representative, Sensitive Data

Italian Data Protection Authority (Garante)-Azienda socio sanitaria locale n. 3 di Nuoro (4/13/2023)

Controllers and Processors, Principles, Representative, Sensitive Data

Polish National Personal Data Protection Office (UODO)-Municipality (5/16/2023)

Controllers and Processors, Integrity and confidentiality, Principles, Privacy by Design, Representative, Technical and Organisational Measures (TOMs)

Icelandic data protection authority (‘Persónuvernd’)-Sjúkratyringur Íslands (6/28/2023)

Controllers and Processors, Data Subjects Rights, Integrity and confidentiality, Principles, Technical and Organisational Measures (TOMs)

Hellenic Data Protection Authority (HDPA)-Piraeus Bank (6/12/2023)

Lawfulness of Processing, Principles, Privacy by Design, Representative

Italian Data Protection Authority (Garante)-Benetton Group S.r.l. (4/27/2023)

Data minimisation, Principles, Sensitive Data, Technical and Organisational Measures (TOMs)

Icelandic data protection authority (‘Persónuvernd’)-Heilsuveru (7/3/2023)

Data Subjects Rights, Integrity and confidentiality, Principles, Technical and Organisational Measures (TOMs)

Data State Inspectorate (DSI)-Company (7/14/1905)

Controllers and Processors, Principles, Representative

Data Protection Authority of Nordrhein-Westfalen-Physician (7/14/1905)

Controllers and Processors, Principles, Representative, Sensitive Data

Polish National Personal Data Protection Office (UODO)-Municipality (5/5/2023)

Controllers and Processors, Integrity and confidentiality, Principles, Privacy by Design, Representative, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Ama S.p.a. (4/27/2023)

Controllers and Processors, Data Processing Agreement (DPA), Data Subjects Rights, Technical and Organisational Measures (TOMs)

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Farmacia Ardealul SRL (6/27/2023)

Controllers and Processors, Sensitive Data, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Azienda ULSS 6 Euganea (5/17/2023)

Controllers and Processors, Principles, Representative, Technical and Organisational Measures (TOMs)

Data Protection Commissioner of Malta-Unknown (7/14/1905)

Integrity and confidentiality, Principles, Representative

Data Protection Authority of Niedersachsen-Company (7/14/1905)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Data Protection Authority of Berlin-Job center employee (7/14/1905)

Controllers and Processors, Principles, Representative

Data Protection Authority of Berlin-Job center employee (7/14/1905)

Controllers and Processors, Principles, Representative

Italian Data Protection Authority (Garante)-Private individual (4/27/2023)

Controllers and Processors, Lawfulness of Processing, Representative

Data Protection Authority of Berlin-Private individual (7/14/1905)

Controllers and Processors, Principles, Representative

Data Protection Authority of Berlin-Restaurant operator (7/14/1905)

Controllers and Processors, Principles, Representative

Data Protection Authority of Berlin-Sports photography company (7/14/1905)

Controllers and Processors, Principles, Representative

Italian Data Protection Authority (Garante)-TIM S.p.A. (4/13/2023)

Accountability, Data Subjects Rights, Principles, Representative

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-NN Pensii Societate de Administrare a unui Fond de Pensii Administrat Privat S.A. (5/12/2023)

Controllers and Processors, Sensitive Data, Technical and Organisational Measures (TOMs)

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-NN Asigurări de Viață S.A. (5/12/2023)

Controllers and Processors, Sensitive Data, Technical and Organisational Measures (TOMs)

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Compania Națională Poșta Română S.A. (5/16/2023)

Consent, Controllers and Processors, Lawfulness of Processing, Representative

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-AUTOMOBILE BAVARIA SRL (5/18/2023)

Controllers and Processors, Principles, Privacy by Design, Sensitive Data, Technical and Organisational Measures (TOMs)

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Credit institution (7/14/1905)

Consent, Controllers and Processors, Lawfulness of Processing, Representative

Italian Data Protection Authority (Garante)-Bolzano municipality (3/23/2023)

Controllers and Processors, Data Breaches, Data Subjects Rights, Integrity and confidentiality, Principles, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Razmataz Live s.r.l.. (3/2/2023)

Controllers and Processors, Data Processing Agreement (DPA), Lawfulness of Processing, Representative

Bulgarian Commission for Personal Data Protection (KZLD)-Bulgarian Post EAD (5/4/2022)

Controllers and Processors, Sensitive Data, Technical and Organisational Measures (TOMs)

Data Protection Commissioner of Malta-Unknown (7/14/1905)

Controllers and Processors, Data Subjects Rights, Technical and Organisational Measures (TOMs)

Data Protection Commissioner of Malta-Unknown (7/14/1905)

Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Aesse S.r.l.s. (3/9/2023)

Consent, Controllers and Processors, Data Subjects Rights, Lawfulness of Processing, Representative

Spanish Data Protection Authority (aepd)-GSMA LTD. (5/3/2023)

Controllers and Processors, Data Protection Impact Assessment (DPIA)

Polish National Personal Data Protection Office (UODO)-Company (2/8/2023)

Controllers and Processors, Integrity and confidentiality, Principles, Privacy by Design, Representative, Technical and Organisational Measures (TOMs)

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Hotel (12/21/2022)

Controllers and Processors, Data Subjects Rights, Principles, Representative, Storage limitation

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Website operator (7/14/1905)

Controllers and Processors, Cooperation with Supervisory Authorithy, Lawfulness of Processing

Croatian Data Protection Authority (azop)-Debt collection agency (5/4/2023)

Consent, Controllers and Processors, Data Processing Agreement (DPA), Lawfulness of Processing, Technical and Organisational Measures (TOMs)

Cypriot Data Protection Commissioner-Πολίτης newspaper (1/16/2023)

Controllers and Processors, Data minimisation, Principles, Representative

Cypriot Data Protection Commissioner-Epic Ltd. (2/3/2023)

Consent, Controllers and Processors, Data Subjects Rights, Lawfulness of Processing, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Private individual (3/2/2023)

Lawfulness of Processing, Representative

Spanish Data Protection Authority (aepd)-KFC RESTAURANTS SPAIN, S.L. (4/20/2023)

Controllers and Processors, Data Subjects Rights, Technical and Organisational Measures (TOMs)

Data Protection Authority of Sweden-Skåne region (4/26/2023)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Data Protection Authority of Brandenburg-Bank (7/14/1905)

Controllers and Processors, Data Processing Agreement (DPA), Data Subjects Rights

Data Protection Authority of Brandenburg-Restaurant operator (7/14/1905)

Controllers and Processors, Principles, Representative

Data Protection Authority of Brandenburg-Aid organization (7/14/1905)

Controllers and Processors, Data Processing Agreement (DPA), Data Subjects Rights

Spanish Data Protection Authority (aepd)-ALBERO FORTE COMPOSITE, S.L. (4/28/2023)

Controllers and Processors, Data Protection Impact Assessment (DPIA)

Italian Data Protection Authority (Garante)-Eurosanità S.P.A. (12/15/2022)

Controllers and Processors, Principles, Sensitive Data, Technical and Organisational Measures (TOMs)

Hellenic Data Protection Authority (HDPA)-ΜΑΡΙΑ ΠΕΔΙΩΤΗ ΚΑΙ ΣΙΑ Ο.Ε. (12/19/2022)

Controllers and Processors, Cooperation with Supervisory Authorithy, Data Subjects Rights

Hellenic Data Protection Authority (HDPA)-Piraeus Bank (2/2/2023)

Data Breaches, Lawfulness of Processing, Principles, Sensitive Data

Italian Data Protection Authority (Garante)-Misterbianco municipality (1/26/2023)

Principles, Representative

Dutch Supervisory Authority for Data Protection (AP)-Dutch Social Insurance Institution (SVB) (1/19/2023)

Technical and Organisational Measures (TOMs)

Data Protection Authority of Hamburg-Private individual (7/14/1905)

Controllers and Processors, Principles, Representative

Data Protection Authority of Hamburg-Logistics company (7/14/1905)

Controllers and Processors, Data Subjects Rights, Technical and Organisational Measures (TOMs)

Data Protection Authority of Hamburg-Physician (7/14/1905)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Data Protection Authority of Hamburg-Covid-19 test center (7/14/1905)

Controllers and Processors, Technical and Organisational Measures (TOMs)

National Commission for Data Protection (CNPD)-Company (10/27/2021)

Controllers and Processors, Data Protection Officer (DPO), Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-WUNSCHURLAUB S.L. (2/28/2023)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Polish National Personal Data Protection Office (UODO)-Housing cooperative (3/1/2023)

Controllers and Processors, Data Breaches, Data Subjects Rights

Italian Data Protection Authority (Garante)-Azienda Ospedaliera Bianchi Melacrino Morelli (1/26/2023)

Principles, Technical and Organisational Measures (TOMs)

Data Protection Authority of Bremen-Company (7/14/1905)

Controllers and Processors, Data Breaches

Italian Data Protection Authority (Garante)-Azienda socio-sanitaria locale n. 1 di Sassari (3/23/2023)

Controllers and Processors, Principles, Sensitive Data, Technical and Organisational Measures (TOMs)

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Integral Collection SRL (3/6/2023)

Controllers and Processors, Sensitive Data, Technical and Organisational Measures (TOMs)

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Alianța pentru Unirea Românilor (3/15/2023)

Controllers and Processors, Data minimisation, Principles, Representative

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Partidul Uniunea Salvați România (3/15/2023)

Controllers and Processors, Data Subjects Rights, Technical and Organisational Measures (TOMs)

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Med Life S.A. (3/16/2023)

Controllers and Processors, Data Subjects Rights, Lawfulness of Processing, Performance of Contract, Technical and Organisational Measures (TOMs)

Polish National Personal Data Protection Office (UODO)-Szczecin-Centrum District Court (1/19/2023)

Controllers and Processors, Integrity and confidentiality, Principles, Privacy by Design, Representative, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-Attorney (2/27/2023)

Controllers and Processors, Integrity and confidentiality, Principles, Representative

Italian Data Protection Authority (Garante)-Ufficio Scolastico Regionale per la Lombardia, Ufficio IV – Ambito Territoriale di Brescia (1/11/2023)

Controllers and Processors, Principles, Representative, Sensitive Data

Norwegian Supervisory Authority (Datatilsynet)-Argon Medical Devices (3/8/2023)

Controllers and Processors, Data Breaches

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Private individual (3/27/2023)

Controllers and Processors, Lawfulness of Processing, Representative

Data Protection Authority of Ireland-Centric Health Ltd. (1/23/2023)

Controllers and Processors, Integrity and confidentiality, Principles, Representative, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Amiu S.p.A. (4/28/2022)

Controllers and Processors, Data Processing Agreement (DPA), Data Protection Officer (DPO), Principles, Representative

Italian Data Protection Authority (Garante)-Verizon Connect Italy S.p.A. (12/15/2022)

Controllers and Processors, Data Processing Agreement (DPA), Lawfulness of Processing, Representative

Italian Data Protection Authority (Garante)-Edison Energia S.p.A. (12/15/2022)

Consent, Controllers and Processors, Lawfulness of Processing, Representative

Data Protection Authority of Ireland-A&G Couriers Limited T/A Fastway Couriers (Ireland) (12/30/2022)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Croatian Data Protection Authority (azop)-Telecommunications company (Unknown)

Consent, Controllers and Processors, Lawfulness of Processing, Representative

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Finopro IFN SA (3/6/2023)

Controllers and Processors, Sensitive Data, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Veneto region (10/6/2022)

Principles, Representative

Italian Data Protection Authority (Garante)-Comune di Monte Sant’Angelo (4/28/2022)

Access Requests (DSAR), Controllers and Processors, Data Subjects Rights, Lawfulness of Processing, Representative

Italian Data Protection Authority (Garante)-Direzione Didattica Statale 1° Circolo-Eboli (4/28/2022)

Controllers and Processors, Principles, Representative, Sensitive Data

Italian Data Protection Authority (Garante)-Mister Brick S.a.s. (8/5/2022)

Access Requests (DSAR), Accountability, Controllers and Processors, Data Subjects Rights, Principles, Representative

National Commission for Data Protection (CNPD)-Manager of a real estate co-ownership (12/13/2022)

Controllers and Processors, Data Subjects Rights, Lawfulness of Processing, Representative

Italian Data Protection Authority (Garante)-Tecnomed Trento s.r.l. (4/7/2022)

Controllers and Processors, Data Processing Agreement (DPA), Data Subjects Rights, Lawfulness of Processing, Principles, Sensitive Data

Belgian Data Protection Authority (APD)-Company (8/23/2022)

Accuracy, Controllers and Processors, Principles, Representative, Technical and Organisational Measures (TOMs)

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Medijobs Platform SRL (2/8/2023)

Technical and Organisational Measures (TOMs)

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-News service (11/15/2022)

Consent, Data Protection Officer (DPO), Data Subjects Rights, Lawfulness of Processing

Italian Data Protection Authority (Garante)-Douglas Italia S.p.a. (10/20/2022)

Accountability, Lawfulness of Processing, Principles, Purpose limitation, Sensitive Data

Cypriot Data Protection Commissioner-PRINTAFORM Ltd. (7/14/1905)

Controllers and Processors, Data Processing Agreement (DPA), Data Subjects Rights

Cypriot Data Protection Commissioner-Bank of Cyprus Public Company Ltd. (7/14/1905)

Controllers and Processors, Data Subjects Rights, Integrity and confidentiality, Principles, Technical and Organisational Measures (TOMs)

Cypriot Data Protection Commissioner-Cyprus Electricity Authority (7/14/1905)

Controllers and Processors, Data Subjects Rights, Integrity and confidentiality, Principles, Technical and Organisational Measures (TOMs)

Cypriot Data Protection Commissioner-Cypriot Ministry of Defense (7/14/1905)

Controllers and Processors, Data Subjects Rights, Technical and Organisational Measures (TOMs)

Cypriot Data Protection Commissioner-DW Dynamic Works LIMITED (7/14/1905)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Scuola Statale Secondaria di I^ grado ‘Bianco-Pascol’ (12/15/2022)

Controllers and Processors, Data Subjects Rights, Principles, Representative, Sensitive Data

Italian Data Protection Authority (Garante)-Poliambulatorio Radiologico ‘il Sorriso’ S.r.l. (11/10/2022)

Controllers and Processors, Data Protection Officer (DPO), Data Subjects Rights, Principles

Polish National Personal Data Protection Office (UODO)-PIONIER (law firm) (11/30/2022)

Controllers and Processors, Lawfulness of Processing, Principles, Representative, Sensitive Data

Italian Data Protection Authority (Garante)-Comune di Bracciano (12/15/2022)

Controllers and Processors, Principles, Representative, Sensitive Data

Italian Data Protection Authority (Garante)-Private individual (11/24/2022)

Controllers and Processors, Principles, Representative, Sensitive Data, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Comune di Borgia (12/15/2022)

Lawfulness of Processing, Representative

Italian Data Protection Authority (Garante)-Comune di Vicchio (12/15/2022)

Lawfulness of Processing, Representative

Italian Data Protection Authority (Garante)-Ordine dei Medici Chirurghi e degli Odontoiatri della Provincia di Cagliari (11/24/2022)

Lawfulness of Processing, Representative

Italian Data Protection Authority (Garante)-Azienda Universitaria Friuli Occidentale (12/15/2022)

Controllers and Processors, Data Protection Impact Assessment (DPIA), Data Subjects Rights, Lawfulness of Processing, Principles, Sensitive Data

Italian Data Protection Authority (Garante)-Azienda Universitaria Friuli Centrale (12/15/2022)

Controllers and Processors, Data Protection Impact Assessment (DPIA), Data Subjects Rights, Lawfulness of Processing, Principles, Sensitive Data

Italian Data Protection Authority (Garante)-Azienda Universitaria Giuliano Isontina (12/15/2022)

Controllers and Processors, Data Protection Impact Assessment (DPIA), Data Subjects Rights, Lawfulness of Processing, Principles, Sensitive Data

Italian Data Protection Authority (Garante)-Cisterna di Latina municipality (11/10/2022)

Controllers and Processors, Data Protection Officer (DPO), Principles

Data Protection Authority of Sachsen-Anhalt-Magdeburg University Hospital (7/15/1905)

Controllers and Processors, Data Breaches

Cypriot Data Protection Commissioner-Hermes Airport Ltd. (7/14/1905)

Controllers and Processors, Data Subjects Rights, Technical and Organisational Measures (TOMs)

Cypriot Data Protection Commissioner-DW Dynamic Works LIMITED (7/14/1905)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Cypriot Data Protection Commissioner-Universal Life Insurance Public Co Ltd. (7/14/1905)

Controllers and Processors, Data Subjects Rights, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Conservatorio di Musica S. Cecilia di Roma (11/10/2022)

Principles, Representative

Croatian Data Protection Authority (azop)-Company in the hospitality industry (11/25/2022)

Controllers and Processors, Representative

Croatian Data Protection Authority (azop)-Betting place (11/25/2022)

Controllers and Processors, Representative

Croatian Data Protection Authority (azop)-Retailer (12/5/2022)

Controllers and Processors, Representative

Croatian Data Protection Authority (azop)-Retailer (12/6/2022)

Controllers and Processors, Representative

Croatian Data Protection Authority (azop)-Retailer (12/6/2022)

Controllers and Processors, Representative

Croatian Data Protection Authority (azop)-Retailer (12/7/2022)

Controllers and Processors, Representative

Croatian Data Protection Authority (azop)-Fish market (12/7/2022)

Controllers and Processors, Representative

Croatian Data Protection Authority (azop)-Jewelry manufacturer (12/8/2022)

Controllers and Processors, Representative

Croatian Data Protection Authority (azop)-Retailer (12/8/2022)

Controllers and Processors, Representative

Italian Data Protection Authority (Garante)-Istituto Comprensivo – IC Cosenza III “V. Negroni” (9/21/2021)

Controllers and Processors, Principles, Representative, Sensitive Data

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Dent Estet Clinic SA (1/31/2023)

Controllers and Processors, Data Breaches

Croatian Data Protection Authority (azop)-Betting place (12/5/2022)

Representative

Hellenic Data Protection Authority (HDPA)-Intellexa SA (1/13/2023)

Controllers and Processors, Cooperation with Supervisory Authorithy

Polish National Personal Data Protection Office (UODO)-Unknown (8/31/2022)

Controllers and Processors, Cooperation with Supervisory Authorithy, Representative

Polish National Personal Data Protection Office (UODO)-Unknown (3/23/2022)

Controllers and Processors, Cooperation with Supervisory Authorithy, Representative

Polish National Personal Data Protection Office (UODO)-TIMSHEL Sp. z o.o. (8/30/2022)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-A.R.N.A.S. Civico (12/1/2022)

Controllers and Processors, Principles, Representative, Sensitive Data

Data Protection Authority of Sweden (Integritetsskyddsmyndigheten)-Dalarna Region (1/17/2023)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Data Protection Authority of Ireland-Meta Platforms Ireland Limited (1/4/2023)

Controllers and Processors, Data Subjects Rights, Lawfulness of Processing, Representative

Italian Data Protection Authority (Garante)-Cisterna di Latina Municipality (11/10/2022)

Controllers and Processors, Data Protection Officer (DPO), Principles

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Apă Canal Ilfov SA (1/4/2023)

Controllers and Processors, Data Subjects Rights, Lawfulness of Processing, Performance of Contract, Technical and Organisational Measures (TOMs)

French Data Protection Authority (CNIL)-FREE SAS (12/8/2022)

Access Requests (DSAR), Controllers and Processors, Data Subjects Rights, Technical and Organisational Measures (TOMs)

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Societatea Energetică Electrica S.A. (12/15/2022)

Controllers and Processors, Data Processing Agreement (DPA)

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-SUDREZIDENȚIAL Broker S.R.L. (12/22/2022)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Kaufland Romania SCS (12/27/2022)

Controllers and Processors, Data Processing Agreement (DPA), Data Subjects Rights

Italian Data Protection Authority (Garante)-Lazio Region (12/1/2022)

Lawfulness of Processing, Representative

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Medicover S.R.L. (11/24/2022)

Controllers and Processors, Data Subjects Rights, Lawfulness of Processing, Performance of Contract, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Vodafone Italia S.p.A. (11/10/2022)

Consent, Controllers and Processors, Data Subjects Rights, Lawfulness of Processing, Representative

Data Protection Authority of Ireland-Slane Credit Union Ltd. (1/26/2022)

Data Processing Agreement (DPA), Data Subjects Rights, Integrity and confidentiality, Principles

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-SC Prestige Media PHG SRL (11/8/2022)

Controllers and Processors, Lawfulness of Processing, Representative

Italian Data Protection Authority (Garante)-Colosseo S.r.l. (8/5/2022)

Access Requests (DSAR), Accountability, Controllers and Processors, Data Subjects Rights, Principles, Representative

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-AMPLIFON Hungary Trade and Service Provider LLC (8/11/2022)

Controllers and Processors, Data Subjects Rights, Principles, Purpose limitation, Representative

Polish National Personal Data Protection Office (UODO)-Mayor (11/2/2022)

Controllers and Processors, Integrity and confidentiality, Principles, Privacy by Design, Representative, Technical and Organisational Measures (TOMs)

French Data Protection Authority (CNIL)-DISCORD INC. (11/10/2022)

Controllers and Processors, Data Subjects Rights, Principles, Storage limitation, Technical and Organisational Measures (TOMs)

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-ING Bank NV Amsterdam Sucursala București (11/21/2022)

Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Ginosa municipality (7/21/2022)

Controllers and Processors, Data Processing Agreement (DPA), Lawfulness of Processing, Representative

Italian Data Protection Authority (Garante)-Acqua Novara.VCO S.p.a. (7/21/2022)

Controllers and Processors, Data Processing Agreement (DPA), Lawfulness of Processing, Representative

Spanish Data Protection Authority (aepd)-BANCO BILBAO VIZCAYA ARGENTARIA, S.A. (10/31/2022)

Controllers and Processors, Principles, Purpose limitation, Representative, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Clio S.r.l. (7/21/2022)

Lawfulness of Processing, Representative

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Romanian Post (11/7/2022)

Technical and Organisational Measures (TOMs)

Information Commissioner (ICO)-Easylife Ltd. (10/4/2022)

Controllers and Processors, Data Subjects Rights, Lawfulness of Processing, Principles, Representative, Sensitive Data

Estonian Data Protection Authority (AKI)-Health care worker (8/17/2020)

Controllers and Processors, Principles, Representative

Italian Data Protection Authority (Garante)-Liceo Statale ‘Edoardo Amaldi” (9/1/2022)

Controllers and Processors, Principles, Representative, Sensitive Data

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Curtea Veche Publishing SRL (9/21/2022)

Controllers and Processors, Sensitive Data, Technical and Organisational Measures (TOMs)

Hellenic Data Protection Authority (HDPA)-EDYTE SA (9/6/2022)

Controllers and Processors, Data Processing Agreement (DPA)

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Bank (10/5/2022)

Accountability, Controllers and Processors, Data Subjects Rights, Principles, Representative

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Health insurance provider (9/25/2022)

Controllers and Processors, Data Subjects Rights, Lawfulness of Processing, Representative

Danish Data Protection Authority (Datatilsynet)-Hørsholm municipality (9/12/2022)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-BAYARD REVISTAS, S.A. (9/28/2022)

Controllers and Processors, Data Breaches, Data Subjects Rights, Integrity and confidentiality, Principles

Polish National Personal Data Protection Office (UODO)-Sułkowice Cultural Center (9/7/2022)

Data Processing Agreement (DPA)

Austrian Data Protection Authority (dsb)-Private individual (7/13/1905)

Data Protection Officer (DPO), Lawfulness of Processing

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Company (8/8/2022)

Accountability, Consent, Lawfulness of Processing, Principles, Purpose limitation, Sensitive Data

Spanish Data Protection Authority (aepd)-SOLIVESA MASTER FRANCHISE S.L. (8/28/2022)

Controllers and Processors, Data Processing Agreement (DPA), Technical and Organisational Measures (TOMs)

Data Protection Authority of Berlin-Company (9/20/2022)

Controllers and Processors, Data Protection Officer (DPO)

Hellenic Data Protection Authority (HDPA)-DO VALUE GREECE LOANS & CREDITS CLAIM MANAGEMENT S.A. (7/19/2022)

Controllers and Processors, Data Subjects Rights, Lawfulness of Processing, Representative

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Enel Energie Muntenia S.A. (8/22/2022)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Alpha Bank Romania SA (8/29/2022)

Controllers and Processors, Data Processing Agreement (DPA), Data Subjects Rights

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-E Software Concept SRL (7/7/2022)

Administratives Measures, Liability and Remedies, Technical and Organisational Measures (TOMs)

Data Protection Authority of Schleswig-Holstein-Physician (7/13/1905)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Data Protection Authority of Schleswig-Holstein-Physician (7/13/1905)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Data Protection Authority of Saarland-Restaurant (7/13/1905)

Controllers and Processors, Data Subjects Rights, Technical and Organisational Measures (TOMs)

Information Commissioner of Isle of Man-Manx Care Ltd (7/13/2022)

Accountability, Controllers and Processors, Data minimisation, Principles, Sensitive Data, Technical and Organisational Measures (TOMs)

Slovak Data Protection Office-Unknown (7/13/1905)

Controllers and Processors, Cooperation with Supervisory Authorithy

Slovak Data Protection Office-Unknown (7/13/1905)

Controllers and Processors, Data Processing Agreement (DPA), Lawfulness of Processing, Representative

Danish Data Protection Authority (Datatilsynet)-Lolland municipiality (8/11/2022)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Wabag Water Services SRL (8/9/2022)

Controllers and Processors, Lawfulness of Processing, Representative

Data Protection Authority of Niedersachsen-Unknown (7/13/1905)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Data Protection Authority of Niedersachsen-Unknown (7/13/1905)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-CDI Transport Intern și Internațional SRL (8/9/2022)

Data Subjects Rights, Representative

Spanish Data Protection Authority (aepd)-ESVETEL, S.L. (7/22/2022)

Controllers and Processors, Data Processing Agreement (DPA), Technical and Organisational Measures (TOMs)

Data Protection Authority of Niedersachsen-Volkswagen (7/26/2022)

Controllers and Processors, Data Protection Impact Assessment (DPIA), Data Subjects Rights

Polish National Personal Data Protection Office (UODO)-University Hospital of the Medical University of Warsaw (7/6/2022)

Controllers and Processors, Data Breaches, Data Subjects Rights

Data Protection Authority of Hamburg-Company (7/13/1905)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-DKV Seguros y Reaseguros, S.A.E. (7/13/2022)

Controllers and Processors, Data Breaches, Data Subjects Rights, Integrity and confidentiality, Principles

Italian Data Protection Authority (Garante)-Villabate municipality (5/12/2022)

Controllers and Processors, Data Protection Officer (DPO), Lawfulness of Processing, Representative

Data Protection Authority of Hamburg-Private individual (7/13/1905)

Controllers and Processors, Lawfulness of Processing, Representative

Italian Data Protection Authority (Garante)-Convitto Nazionale Statale ‘Giordano Bruno’ di Maddaloni (boarding school) (3/25/2021)

Lawfulness of Processing, Representative

Italian Data Protection Authority (Garante)-Region of Tuscany (5/26/2022)

Data minimisation, Principles, Representative

Italian Data Protection Authority (Garante)-Università Agraria di Nettuno (5/26/2022)

Principles, Representative

Italian Data Protection Authority (Garante)-Comune di Napoli Corpo di Polizia Municipale (5/22/2022)

Lawfulness of Processing, Representative

Spanish Data Protection Authority (aepd)-Bar owner (7/19/2022)

Principles, Purpose limitation

Cypriot Data Protection Commissioner-Oroklini Municipal Council (7/14/1905)

Controllers and Processors, Cooperation with Supervisory Authorithy

Cypriot Data Protection Commissioner-Εκδοτικού Οίκου Δίας (2/4/2022)

Controllers and Processors, Principles, Representative

Cypriot Data Protection Commissioner-Physician (7/14/1905)

Controllers and Processors, Cooperation with Supervisory Authorithy

Hellenic Data Protection Authority (HDPA)-Clearview Al Inc. (7/13/2022)

Controllers and Processors, Data Subjects Rights, Lawfulness of Processing, Principles, Representative, Sensitive Data

Polish National Personal Data Protection Office (UODO)-Głównego Geodetę Kraju (7/6/2022)

Controllers and Processors, Data Breaches, Data Subjects Rights

Danish Data Protection Authority (Datatilsynet)-SIRIUS (law firm) (7/14/2022)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Cypriot Data Protection Commissioner-Cyprus Judo Federation (7/14/1905)

Controllers and Processors, Cooperation with Supervisory Authorithy

Italian Data Protection Authority (Garante)-Azienda Socio Sanitaria Territoriale Dei Sette Laghi (5/22/2022)

Controllers and Processors, Integrity and confidentiality, Principles, Sensitive Data, Technical and Organisational Measures (TOMs)

Polish National Personal Data Protection Office (UODO)-Stołeczny Ośrodek dla Osób Nietrzeźwych (5/31/2022)

Controllers and Processors, Lawfulness of Processing, Representative

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Continental Automotive Romania SRL (6/30/2022)

Controllers and Processors, Data Subjects Rights, Technical and Organisational Measures (TOMs)

Hellenic Data Protection Authority (HDPA)-Pediatric psychologist (6/29/2022)

Controllers and Processors, Cooperation with Supervisory Authorithy

Italian Data Protection Authority (Garante)-Azienda Sanitaria Locale Roma (5/26/2022)

Data minimisation, Principles, Representative

Data Protection Authority of Berlin-Attorney (7/13/1905)

Controllers and Processors, Principles, Representative

Italian Data Protection Authority (Garante)-Nos s.r.l.s. (4/28/2022)

Consent, Controllers and Processors, Data Subjects Rights, Lawfulness of Processing, Representative

Belgian Data Protection Authority (APD)-SA Rossel & Cie (6/16/2022)

Consent, Controllers and Processors, Data Protection Officer (DPO), Data Subjects Rights, Lawfulness of Processing

Spanish Data Protection Authority (aepd)-SCOTCH CORNER BAR (6/16/2022)

Controllers and Processors, Data minimisation, Principles, Representative

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Wens Experience SRL (6/8/2022)

Controllers and Processors, Data Processing Agreement (DPA)

Polish National Personal Data Protection Office (UODO)-Esselmann Technika Pojazdowa Sp. z o.o. Sp. k. (6/6/2022)

Controllers and Processors, Data Breaches

Italian Data Protection Authority (Garante)-Isabella Gonzaga’ high school (4/28/2022)

Controllers and Processors, Principles, Representative, Sensitive Data

Data Protection Authority of Hessen-Police officer (7/13/1905)

Controllers and Processors, Principles, Representative

Data Protection Authority of Hessen-Police officer (7/13/1905)

Controllers and Processors, Principles, Representative

Data Protection Authority of Hessen-Police officer (7/13/1905)

Controllers and Processors, Principles, Representative

Data Protection Authority of Hessen-Police officer (7/13/1905)

Controllers and Processors, Principles, Representative

Data Protection Authority of Berlin-Police officer (7/13/1905)

Controllers and Processors, Principles, Representative

Data Protection Authority of Berlin-Police officer (7/13/1905)

Controllers and Processors, Principles, Representative

Data Protection Authority of Berlin-Police officer (7/13/1905)

Controllers and Processors, Principles, Representative

Data Protection Authority of Berlin-Police officer (7/13/1905)

Controllers and Processors, Principles, Representative

Data Protection Authority of Berlin-Police officer (7/13/1905)

Controllers and Processors, Principles, Representative

Data Protection Authority of Berlin-Job center employee (7/13/1905)

Controllers and Processors, Principles, Representative

Data Protection Authority of Berlin-Job center employee (7/13/1905)

Controllers and Processors, Principles, Representative

Data Protection Authority of Berlin-Medical clinic (7/13/1905)

Controllers and Processors, Principles, Representative

Data Protection Authority of Hessen-Restaurant (7/13/1905)

Principles, Purpose limitation

Italian Data Protection Authority (Garante)-Made in Italy s.r.l.s. (4/7/2022)

Access Requests (DSAR), Controllers and Processors, Data Protection Officer (DPO), Data Subjects Rights, Lawfulness of Processing

Belgian Data Protection Authority (APD)-Roularta Media Group (5/25/2022)

Consent, Controllers and Processors, Lawfulness of Processing, Principles, Representative, Storage limitation

Italian Data Protection Authority (Garante)-Italian Ministry of Defense (4/28/2022)

Controllers and Processors, Lawfulness of Processing, Representative, Sensitive Data

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Kaufland Romania SCS (6/3/2022)

Controllers and Processors, Data Processing Agreement (DPA), Data Subjects Rights

Danish Data Protection Authority (Datatilsynet)-Civilstyrelsen (5/12/2022)

Controllers and Processors, Data Subjects Rights, Technical and Organisational Measures (TOMs)

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-LORIS FUEL SHOP SRL (5/12/2022)

Controllers and Processors, Data Processing Agreement (DPA), Data Subjects Rights

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Kredyt Inkaso Investments RO S.A (5/18/2022)

Controllers and Processors, Data Breaches, Principles, Representative, Sensitive Data

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-MED LIFE S.A. (5/24/2022)

Technical and Organisational Measures (TOMs)

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Workshop (3/29/2022)

Legitimate Interest, Principles, Purpose limitation, Sensitive Data

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-MAYR MELNHOF PACKAGING ROMANIA S.R.L. (5/17/2022)

Accountability, Lawfulness of Processing, Principles, Purpose limitation, Sensitive Data

Cypriot Data Protection Commissioner-Mediterranean Hospital of Cyprus (9/17/2021)

Controllers and Processors, Cooperation with Supervisory Authorithy, Representative

Spanish Data Protection Authority (aepd)-CAFFE VECCHIO, S.L. (4/28/2022)

Controllers and Processors, Integrity and confidentiality, Principles, Representative

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Concordia Capital IFN S.A. (5/4/2022)

Controllers and Processors, Principles, Representative

Norwegian Supervisory Authority (Datatilsynet)-Lillestrøm Municipality (2/2/2022)

Controllers and Processors, Lawfulness of Processing, Performance of Contract, Principles, Representative

Icelandic data protection authority (‘Persónuvernd’)-City of Reykjavík (5/3/2022)

Controllers and Processors, Principles, Representative, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-ASST di Lodi (4/26/2022)

Controllers and Processors, Integrity and confidentiality, Principles, Sensitive Data, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-ISWEB S.p.A. (4/7/2022)

Controllers and Processors, Data Processing Agreement (DPA)

Belgian Data Protection Authority (APD)-Company (4/1/2022)

Access Requests (DSAR), Controllers and Processors, Data Subjects Rights, Lawfulness of Processing, Representative

Italian Data Protection Authority (Garante)-Azienda USL Toscana Centro (3/10/2022)

Controllers and Processors, Lawfulness of Processing, Principles, Sensitive Data, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Azienda sanitaria provinciale di Caltanissetta (3/10/2022)

Access Requests (DSAR), Controllers and Processors, Data Subjects Rights, Principles, Representative

French Data Protection Authority (CNIL)-DEDALUS BIOLOGIE (4/15/2022)

Controllers and Processors, Data Processing Agreement (DPA), Data Subjects Rights, Technical and Organisational Measures (TOMs)

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Company (3/2/2022)

Accountability, Controllers and Processors, Data Subjects Rights, Principles, Representative

Italian Data Protection Authority (Garante)-Scanshare S.r.l. (2/10/2022)

Controllers and Processors, Data Processing Agreement (DPA), Data Subjects Rights

Data Protection Authority of Bremen-BREBAU GmbH (3/3/2022)

Controllers and Processors, Principles, Representative, Sensitive Data

Polish National Personal Data Protection Office (UODO)-Fortum Marketing and Sales Polska S.A. (1/19/2022)

Controllers and Processors, Data Processing Agreement (DPA), Data Subjects Rights, Integrity and confidentiality, Principles, Privacy by Design

Polish National Personal Data Protection Office (UODO)-PIKA Sp. z o.o. (1/19/2022)

Controllers and Processors, Data Processing Agreement (DPA), Principles, Sensitive Data, Technical and Organisational Measures (TOMs)

Danish Data Protection Authority (Datatilsynet)-Danish National Genome Center (3/25/2022)

Controllers and Processors, Data Protection Impact Assessment (DPIA)

Hellenic Data Protection Authority (HDPA)-Employer (3/9/2022)

Controllers and Processors, Data Subjects Rights, Lawfulness of Processing, Representative

Cypriot Data Protection Commissioner-English School Cyprus (3/22/2022)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Cypriot Data Protection Commissioner-English School staff union (ESSA) (3/21/2022)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Data Protection Authority of Sweden-Klarna Bank AB (3/28/2022)

Controllers and Processors, Data Subjects Rights, Lawfulness of Processing, Representative

Hellenic Data Protection Authority (HDPA)-Foreign language school (3/9/2022)

Controllers and Processors, Data Subjects Rights, Lawfulness of Processing, Representative

Data Protection Authority of Ireland-Bank of Ireland (4/5/2022)

Controllers and Processors, Data Subjects Rights, Technical and Organisational Measures (TOMs)

Belgian Data Protection Authority (APD)-Ambuce Rescue Team (4/4/2022)

Controllers and Processors, Principles, Representative, Sensitive Data

Belgian Data Protection Authority (APD)-Brussels Airport Zaventem (4/4/2022)

Data minimisation, Data Subjects Rights, Principles, Representative

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Condor SA (3/28/2022)

Technical and Organisational Measures (TOMs)

Polish National Personal Data Protection Office (UODO)-Santander Bank Polska S. A. (1/19/2022)

Controllers and Processors, Data Breaches

Croatian Data Protection Authority (azop)-Retail company (name not available at the moment) (3/8/2022)

Controllers and Processors, Sensitive Data, Technical and Organisational Measures (TOMs)

Icelandic data protection authority (‘Persónuvernd’)-Hörpu tónlistar- og ráðstefnuhúss ohf. (3/8/2022)

Controllers and Processors, Data minimisation, Principles, Representative

Italian Data Protection Authority (Garante)-Region of Tuscany (2/10/2022)

Principles, Representative

Italian Data Protection Authority (Garante)-Azienda sanitaria unica regionale Marche (1/13/2022)

Controllers and Processors, Data Protection Impact Assessment (DPIA), Data Subjects Rights, Integrity and confidentiality, Principles

Polish National Personal Data Protection Office (UODO)-Pactum Poland Sp. z o.o. (12/1/2021)

Controllers and Processors, Cooperation with Supervisory Authorithy, Representative

Italian Data Protection Authority (Garante)-A.S.L. Napoli 1 Centro (1/13/2022)

Principles, Representative

Data Protection Authority of Hamburg-Police officer (7/12/1905)

Controllers and Processors, Principles, Representative

Data Protection Authority of Hamburg-Police officer (7/12/1905)

Controllers and Processors, Principles, Representative

Data Protection Authority of Hamburg-Police officer (7/12/1905)

Controllers and Processors, Principles, Representative

Data Protection Authority of Hamburg-Restaurant (7/12/1905)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Data Protection Authority of Hamburg-Restaurant (7/12/1905)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Data Protection Authority of Hamburg-Restaurant (7/12/1905)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Belgian Data Protection Authority (APD)-IAB Europe (2/2/2022)

Consent, Controllers and Processors, Lawfulness of Processing, Representative

Spanish Data Protection Authority (aepd)-SEGURCAIXA ADESLAS, S.A. DE SEGUROS Y REASEGUROS (2/4/2022)

Controllers and Processors, Data Processing Agreement (DPA), Data Subjects Rights, Lawfulness of Processing

Italian Data Protection Authority (Garante)-ASL Latina (12/17/2021)

Controllers and Processors, Integrity and confidentiality, Principles, Representative, Sensitive Data

Spanish Data Protection Authority (aepd)-Vodafone España, S.A.U. (2/1/2022)

Controllers and Processors, Integrity and confidentiality, Principles, Representative

Hellenic Data Protection Authority (HDPA)-Cosmote Mobile Telecommunications S.A. (1/27/2022)

Controllers and Processors, Data Subjects Rights, Lawfulness of Processing, Representative

Hellenic Data Protection Authority (HDPA)-OTE Group (1/27/2022)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-B&T S.p.A. (11/25/2021)

Controllers and Processors, Data Subjects Rights, Lawfulness of Processing, Representative

Italian Data Protection Authority (Garante)-Aimon Srl (11/25/2021)

Controllers and Processors, Data Subjects Rights, Lawfulness of Processing, Representative, Right to Object

Data Protection Authority of Saarland-Police officer (7/12/1905)

Controllers and Processors, Principles, Representative

Data Protection Authority of Hamburg-Police officer (7/12/1905)

Controllers and Processors, Principles, Representative

Data Protection Authority of Hamburg-Police officer (7/12/1905)

Controllers and Processors, Principles, Representative

Data Protection Authority of Hamburg-Police officer (7/12/1905)

Controllers and Processors, Principles, Representative

Data Protection Authority of Hamburg-Police officer (7/12/1905)

Controllers and Processors, Principles, Representative

Data Protection Authority of Hamburg-Police officer (7/12/1905)

Controllers and Processors, Principles, Representative

Deputy Data Protection Ombudsman-Travel agency (12/16/2021)

Controllers and Processors, Data Subjects Rights, Integrity and confidentiality, Principles, Privacy by Design, Technical and Organisational Measures (TOMs)

Data Protection Authority of Sweden (Integritetsskyddsmyndigheten)-Uppsala regional board (1/26/2022)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Centro di Medicina preventiva s.r.l. (12/16/2021)

Controllers and Processors, Data Protection Officer (DPO), Data Subjects Rights, Principles, Technical and Organisational Measures (TOMs)

Polish National Personal Data Protection Office (UODO)-Warsaw University of Technology (12/9/2021)

Controllers and Processors, Integrity and confidentiality, Principles, Privacy by Design, Representative, Technical and Organisational Measures (TOMs)

Data Protection Authority of Ireland-Irish Teacher Council (12/2/2021)

Controllers and Processors, Data Breaches, Data Subjects Rights, Principles

Hellenic Data Protection Authority (HDPA)-Greek Ministry of Tourism (12/29/2021)

Controllers and Processors, Data Breaches, Data Protection Officer (DPO), Data Subjects Rights

Belgian Data Protection Authority (APD)-Bank (12/16/2021)

Controllers and Processors, Data Protection Officer (DPO)

Data Protection Commissioner of Malta-C-Planet (IT Solutions) Limited (1/17/2022)

Integrity and confidentiality, Principles, Representative

French Data Protection Authority (CNIL)-SLIMPAY (12/28/2021)

Controllers and Processors, Data Processing Agreement (DPA), Data Subjects Rights

Austrian Data Protection Authority (dsb)-Unknown (2/12/2021)

Controllers and Processors, Cooperation with Supervisory Authorithy

Deputy Data Protection Ombudsman-Psykoterapiakeskus Vastaamo (12/7/2021)

Controllers and Processors, Data Breaches, Data Subjects Rights, Integrity and confidentiality, Principles

Danish Data Protection Authority (Datatilsynet)-Municipality of Frederiksberg (12/16/2021)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Hellenic Data Protection Authority (HDPA)-One Way Private Company (12/8/2021)

Controllers and Processors, Data Processing Agreement (DPA), Data Subjects Rights

Dutch Supervisory Authority for Data Protection (AP)-Dutch Minister of Finance (11/25/2021)

Lawfulness of Processing, Representative

Lithuanian Data Protection Authority (VDAI)-UAB Prime Leasing (11/29/2021)

Controllers and Processors, Principles, Sensitive Data, Technical and Organisational Measures (TOMs)

Polish National Personal Data Protection Office (UODO)-Bank Millennium S.A (10/14/2021)

Controllers and Processors, Data Breaches, Data Subjects Rights

French Data Protection Authority (CNIL)-Régie autonome des transports parisiens (11/4/2021)

Accountability, Controllers and Processors, Data minimisation, Principles, Representative, Technical and Organisational Measures (TOMs)

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Valoris Center S.R.L. (11/26/2021)

Controllers and Processors, Data Processing Agreement (DPA), Data Subjects Rights, Technical and Organisational Measures (TOMs)

Icelandic data protection authority (‘Persónuvernd’)-Icelandic Ministry of Industry and Innovation (11/23/2021)

Consent, Controllers and Processors, Data Subjects Rights, Lawfulness of Processing, Principles, Representative

Icelandic data protection authority (‘Persónuvernd’)-YAY ehf. (11/23/2021)

Controllers and Processors, Data Processing Agreement (DPA), Principles, Representative, Technical and Organisational Measures (TOMs)

Dutch Supervisory Authority for Data Protection (AP)-Transavia (11/12/2021)

Technical and Organisational Measures (TOMs)

National Commission for Data Protection (CNPD)-Unknown (10/27/2021)

Data Protection Officer (DPO)

Bulgarian Commission for Personal Data Protection (KZLD)-Bank (10/26/2021)

Principles, Purpose limitation

Spanish Data Protection Authority (aepd)-SERVICIOS LOGÍSTICOS MARTORELL SIGLO XXI, S.L. (10/26/2021)

Controllers and Processors, Data Protection Impact Assessment (DPIA)

National Commission for Data Protection (CNPD)-Unknown (10/13/2021)

Controllers and Processors, Data Protection Officer (DPO), Technical and Organisational Measures (TOMs)

National Commission for Data Protection (CNPD)-Unknown (10/13/2021)

Controllers and Processors, Data Protection Officer (DPO), Technical and Organisational Measures (TOMs)

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-IKEA ROMÂNIA SA (11/1/2021)

Technical and Organisational Measures (TOMs)

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-S.P.E.E.H. Hidroelectrica S.A. (11/1/2021)

Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-CLUB DEPORTIVO SANSUEÑA, S.L. (10/5/2021)

Controllers and Processors, Principles, Representative, Storage limitation, Technical and Organisational Measures (TOMs)

National Commission for Data Protection (CNPD)-Insurance company (8/5/2021)

Controllers and Processors, Data Breaches, Data Subjects Rights, Integrity and confidentiality, Principles

Italian Data Protection Authority (Garante)-La Prima S.r.l. (9/16/2021)

Controllers and Processors, Principles, Privacy by Design, Representative, Technical and Organisational Measures (TOMs)

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Glove Technology SRL (10/21/2021)

Controllers and Processors, Lawfulness of Processing, Representative

Information Commissioner of Isle of Man-Cosmetic Medical Limited (12/11/2020)

Controllers and Processors, Cooperation with Supervisory Authorithy

Norwegian Supervisory Authority (Datatilsynet)-Ferde AS (9/27/2021)

Controllers and Processors, Data Processing Agreement (DPA), Integrity and confidentiality, Principles, Representative

Spanish Data Protection Authority (aepd)-ACONCAGUA JUEGOS S.A. (9/29/2021)

Controllers and Processors, Data Protection Officer (DPO)

Danish Data Protection Authority (Datatilsynet)-Danish Cancer Society (9/29/2021)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Norwegian Supervisory Authority (Datatilsynet)-ST. OLAVS HOSPITAL HF (9/20/2021)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Norwegian Supervisory Authority (Datatilsynet)-Høylandet Municipality (9/20/2021)

Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-Bar owner (9/28/2021)

Principles, Purpose limitation

Spanish Data Protection Authority (aepd)-Furnishyourspace S.L. (8/30/2021)

Controllers and Processors, Data Subjects Rights, Lawfulness of Processing, Representative

Spanish Data Protection Authority (aepd)-Agency (8/23/2021)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Danish Data Protection Authority (Datatilsynet)-Midtjylland Region (9/8/2021)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Atac s.p.a. (7/22/2021)

Controllers and Processors, Principles, Representative, Technical and Organisational Measures (TOMs)

Cypriot Data Protection Commissioner-APOEL FC (9/6/2021)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Cypriot Data Protection Commissioner-AC Omonia (9/6/2021)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Cypriot Data Protection Commissioner-Hellenic Technical Enterprises Ltd. (9/6/2021)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Danish Data Protection Authority (Datatilsynet)-Favrskov municipality (9/16/2021)

Controllers and Processors, Technical and Organisational Measures (TOMs)

French Data Protection Authority (CNIL)-Société nouvelle de l’annuaire français (9/15/2021)

Controllers and Processors, Cooperation with Supervisory Authorithy, Data Subjects Rights

Danish Data Protection Authority (Datatilsynet)-Syddanmark Region (9/17/2021)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Flowbird Italia s.r.l. (7/22/2021)

Principles, Representative

Italian Data Protection Authority (Garante)-Aeroporto Guglielmo Marconi di Bologna S.p.a. (6/10/2021)

Controllers and Processors, Data Subjects Rights, Integrity and confidentiality, Principles, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-aiComply S.r.l. (6/10/2021)

Controllers and Processors, Data Processing Agreement (DPA), Data Subjects Rights

Norwegian Supervisory Authority (Datatilsynet)-Waxing Palace AS (8/12/2021)

Controllers and Processors, Data Subjects Rights, Principles, Representative

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Magyar Telekom Nyrt. (6/18/2021)

Accuracy, Controllers and Processors, Data Subjects Rights, Principles, Representative

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Actamedica SRL (8/24/2021)

Controllers and Processors, Data Breaches, Data Processing Agreement (DPA), Data Subjects Rights

Spanish Data Protection Authority (aepd)-Banco Bilbao Vizcaya Argentaria, S.A. (8/25/2021)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Polish National Personal Data Protection Office (UODO)-President of the Zgierz District Court (8/13/2021)

Data Subjects Rights, Integrity and confidentiality, Principles, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-Club Náutico el Estacio (8/2/2021)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Data Protection Authority of Niedersachsen-Company (7/12/1905)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-INSTAPACK, S.L. (7/27/2021)

Controllers and Processors, Lawfulness of Processing, Representative

Deputy Data Protection Ombudsman-Higher Education Institution (7/5/2021)

Data minimisation, Principles, Representative

Austrian Data Protection Authority (dsb)-Unser Ö-Bonus Club GmbH (8/2/2021)

Data Protection Officer (DPO), Lawfulness of Processing

Spanish Data Protection Authority (aepd)-Marbella Resorts S.L. (7/6/2021)

Controllers and Processors, Data Processing Agreement (DPA)

Polish National Personal Data Protection Office (UODO)-Fundację Promocji Mediacji i Edukacji Prawnej Lex Nostra (6/30/2021)

Controllers and Processors, Data Breaches, Data Subjects Rights

Spanish Data Protection Authority (aepd)-Mercadona S.A. (7/26/2021)

Controllers and Processors, Data minimisation, Data Subjects Rights, Principles, Representative, Sensitive Data

Polish National Personal Data Protection Office (UODO)-Sopockie Towarzystwo Ubezpieczeń ERGO Hestia S.A. (6/21/2021)

Controllers and Processors, Data Breaches, Data Subjects Rights

Danish Data Protection Authority (Datatilsynet)-Nordbornholms Byggeforretning Aps (7/7/2021)

Controllers and Processors, Principles, Representative

National Commission for Data Protection (CNPD)-Unknown (6/11/2021)

Controllers and Processors, Data minimisation, Data Subjects Rights, Principles, Sensitive Data, Technical and Organisational Measures (TOMs)

Dutch Supervisory Authority for Data Protection (AP)-UWV (Dutch employee insurance service provider) (5/31/2021)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Danish Data Protection Authority (Datatilsynet)-Region of Syddanmark (7/16/2021)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Croatian Data Protection Authority (azop)-IT services company (7/5/2021)

Technical and Organisational Measures (TOMs)

Deputy Data Protection Ombudsman-Magazine publisher (6/24/2021)

Data Protection Officer (DPO), Data Subjects Rights, Lawfulness of Processing

National Commission for Data Protection (CNPD)-Unknown (6/11/2021)

Data Protection Officer (DPO)

Polish National Personal Data Protection Office (UODO)-PNP S.A. (4/27/2021)

Controllers and Processors, Cooperation with Supervisory Authorithy, Representative

Norwegian Supervisory Authority (Datatilsynet)-BRAbank ASA (5/28/2021)

Controllers and Processors, Data Subjects Rights, Technical and Organisational Measures (TOMs)

Dutch Supervisory Authority for Data Protection (AP)-Orthodontic Clinic (2/4/2021)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-La Santrade S.R.L. (6/9/2021)

Controllers and Processors, Cooperation with Supervisory Authorithy, Representative

Polish National Personal Data Protection Office (UODO)-Funeda Sp. z o.o. (3/19/2021)

Controllers and Processors, Cooperation with Supervisory Authorithy, Representative

Danish Data Protection Authority (Datatilsynet)-Vejle Municipality (6/16/2021)

Controllers and Processors, Technical and Organisational Measures (TOMs)

French Data Protection Authority (CNIL)-BRICO PRIVÉ (6/14/2021)

Access Requests (DSAR), Controllers and Processors, Data Subjects Rights, Principles, Storage limitation, Technical and Organisational Measures (TOMs)

Norwegian Supervisory Authority (Datatilsynet)-Unknown (6/22/2021)

Access Requests (DSAR), Controllers and Processors, Data Subjects Rights, Principles, Representative

Norwegian Supervisory Authority (Datatilsynet)-Moss municipality (6/4/2021)

Controllers and Processors, Principles, Sensitive Data, Technical and Organisational Measures (TOMs)

Lithuanian Data Protection Authority (VDAI)-Unknown (7/12/1905)

Controllers and Processors, Data Protection Impact Assessment (DPIA), Data Subjects Rights, Principles, Technical and Organisational Measures (TOMs)

Data Protection Authority of Sweden (Integritetsskyddsmyndigheten)-Directorate of the Östra Skaraborg Rescue Service (6/9/2021)

Lawfulness of Processing, Principles, Sensitive Data, Technical and Organisational Measures (TOMs)

National Commission for Data Protection (CNPD)-Unknown (5/31/2021)

Data Protection Officer (DPO)

Data Protection Authority of Sweden (Integritetsskyddsmyndigheten)-Voice Integrate Nordic AB (6/7/2021)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-S.C. Dreamtime Call S.R.L. (6/9/2021)

Controllers and Processors, Cooperation with Supervisory Authorithy, Representative

Polish Data Protection Authority (UODO)-Cyfrowy Polsat S.A. (4/22/2021)

Controllers and Processors, Data Breaches, Data Subjects Rights, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Comune di Palermo (4/15/2021)

Controllers and Processors, Data Subjects Rights, Integrity and confidentiality, Principles, Technical and Organisational Measures (TOMs)

Norwegian Supervisory Authority (Datatilsynet)-Municipality of Oslo (5/20/2021)

Controllers and Processors, Principles, Representative

Spanish Data Protection Authority (aepd)-Vodafone España, SAU (5/25/2021)

Controllers and Processors, Data Processing Agreement (DPA)

Norwegian Supervisory Authority (Datatilsynet)-Innovasjon Norge (5/18/2021)

Controllers and Processors, Principles, Representative

Italian Data Protection Authority (Garante)-OneDirect Srl (3/25/2021)

Consent, Controllers and Processors, Cooperation with Supervisory Authorithy, Data Protection Officer (DPO), Lawfulness of Processing

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Budapest Főváros Kormányhivatala XI. kerületi Hivatalát (11th District Public Health Department of the Government Office of the Capital City Budapest) (3/24/2021)

Controllers and Processors, Data Breaches, Sensitive Data, Technical and Organisational Measures (TOMs)

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-World Class România S.A. (5/7/2021)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Icelandic data protection authority (‘Persónuvernd’)-InfoMentor ehf (4/29/2021)

Controllers and Processors, Principles, Sensitive Data, Technical and Organisational Measures (TOMs)

Dutch Supervisory Authority for Data Protection (AP)-PVV Overijssel (6/16/2020)

Controllers and Processors, Data Breaches

Dutch Supervisory Authority for Data Protection (AP)-Locatefamily.com (12/20/2020)

Controllers and Processors, Representative

Italian Data Protection Authority (Garante)-Planet Group Spa (3/11/2021)

Lawfulness of Processing, Representative

Norwegian Supervisory Authority (Datatilsynet)-Basaren Drift AS (3/21/2021)

Controllers and Processors, Data Subjects Rights, Principles, Representative

Czech Data Protection Auhtority (UOOU)-Municipality (7/12/1905)

Controllers and Processors, Data Subjects Rights, Lawfulness of Processing, Representative

Czech Data Protection Auhtority (UOOU)-Unknown (7/12/1905)

Controllers and Processors, Data Subjects Rights, Lawfulness of Processing, Representative

Dutch Supervisory Authority for Data Protection (AP)-Municipality of Enschede (3/11/2021)

Controllers and Processors, Lawfulness of Processing, Representative

Italian Data Protection Authority (Garante)-Mediacom s.r.l. (3/11/2021)

Controllers and Processors, Lawfulness of Processing, Representative

Spanish Data Protection Authority (aepd)-Kukimbia S.L. (4/5/2021)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-Electrotecnica Bastida S.L. (4/5/2021)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Istituti ospedalieri bergamaschi (2/11/2021)

Controllers and Processors, Lawfulness of Processing, Principles, Sensitive Data, Technical and Organisational Measures (TOMs)

Norwegian Supervisory Authority (Datatilsynet)-Asker Municipality (3/15/2021)

Controllers and Processors, Lawfulness of Processing, Performance of Contract, Principles, Representative, Technical and Organisational Measures (TOMs)

Norwegian Supervisory Authority (Datatilsynet)-Miljø- og Kvalitetsledelse AS (4/9/2021)

Controllers and Processors, Lawfulness of Processing, Representative

Czech Data Protection Auhtority (UOOU)-Mall.tv (7/12/1905)

Controllers and Processors, Principles, Representative

Czech Data Protection Auhtority (UOOU)-Ski rental company (7/12/1905)

Consent, Controllers and Processors, Data minimisation, Data Subjects Rights, Lawfulness of Processing, Principles, Representative

Hellenic Data Protection Authority (HDPA)-Ιγνατιάδης Νικόλαος και ΣΙΑ Ε.Ε. (4/7/2020)

Controllers and Processors, Data minimisation, Principles, Representative

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Lugera & Makler Broker S.R.L. (4/19/2021)

Controllers and Processors, Data Processing Agreement (DPA), Data Subjects Rights

Czech Data Protection Auhtority (UOOU)-Private healthcare provider (7/12/1905)

Controllers and Processors, Data Subjects Rights, Technical and Organisational Measures (TOMs)

Czech Data Protection Auhtority (UOOU)-Unknown (5/26/2020)

Controllers and Processors, Lawfulness of Processing, Representative

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-S.C. Tip Top Food Industry S.R.L (4/15/2021)

Accountability, Lawfulness of Processing, Principles, Purpose limitation, Sensitive Data

Belgian Data Protection Authority (APD)-School (3/15/2021)

Controllers and Processors, Data minimisation, Principles, Representative

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-S.C. Medicover S.R.L. (3/23/2021)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Norwegian Supervisory Authority (Datatilsynet)-Ålesund Municipality (3/15/2021)

Controllers and Processors, Data Protection Impact Assessment (DPIA), Data Subjects Rights, Lawfulness of Processing, Performance of Contract

Spanish Data Protection Authority (aepd)-Air Europa Lineas Aereas, SA. (3/15/2021)

Controllers and Processors, Data Subjects Rights, Technical and Organisational Measures (TOMs)

Norwegian Supervisory Authority (Datatilsynet)-Dragefossen AS (3/8/2021)

Controllers and Processors, Lawfulness of Processing, Representative

Dutch Supervisory Authority for Data Protection (AP)-Booking.com B.V. (12/10/2020)

Controllers and Processors, Data Breaches

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Telekom Romania Mobile Communications S.A. (3/30/2021)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Roma Capitale (2/11/2021)

Controllers and Processors, Data Processing Agreement (DPA), Principles, Representative, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Roma Servizi per La Mobilita S.r.l. (2/11/2021)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Ministero dell’Istruzione, Ufficio Scolastico Regionale per il Lazio (2/25/2021)

Controllers and Processors, Lawfulness of Processing, Principles, Representative, Sensitive Data

Italian Data Protection Authority (Garante)-Fastweb S.p.A. (3/25/2021)

Consent, Controllers and Processors, Data Subjects Rights, Lawfulness of Processing, Principles, Representative

Polish National Personal Data Protection Office (UODO)-Anwara Sp. z.o.o. (1/15/2021)

Controllers and Processors, Cooperation with Supervisory Authorithy, Representative

Polish National Personal Data Protection Office (UODO)-Enea S.A. (1/11/2021)

Controllers and Processors, Data Breaches

Spanish Data Protection Authority (aepd)-Xfera Moviles S.A. (3/10/2021)

Controllers and Processors, Data Subjects Rights, Integrity and confidentiality, Principles, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-Vodafone España, S.A.U. (3/11/2021)

Controllers and Processors, Data Processing Agreement (DPA), Data Subjects Rights, Data Transfers

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Natural person holding the position of General Secretary for a political party in Bucharest (3/4/2021)

Administratives Measures, Liability and Remedies, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-Certime S.A. (3/15/2021)

Principles, Purpose limitation

Polish National Personal Data Protection Office (UODO)-Krajowa Szkoła Sądownictwa i Prokuratury (2/11/2021)

Controllers and Processors, Data Processing Agreement (DPA), Data Subjects Rights, Integrity and confidentiality, Principles, Technical and Organisational Measures (TOMs)

Croatian Data Protection Authority (azop)-Security company (name not available at the moment) (2/22/2021)

Controllers and Processors, Principles, Sensitive Data, Technical and Organisational Measures (TOMs)

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Unknown (12/16/2020)

Controllers and Processors, Data minimisation, Data Subjects Rights, Principles, Representative, Sensitive Data

Data Protection Authority of Ireland-Tusla Child and Family Agency (8/12/2020)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Lithuanian Data Protection Authority (VDAI)-Nacionaliniam visuomenės sveikatos centrui (NVSC) (2/26/2021)

Controllers and Processors, Data Subjects Rights, Principles, Technical and Organisational Measures (TOMs)

Lithuanian Data Protection Authority (VDAI)-IT sprendimai sėkmei (2/26/2021)

Controllers and Processors, Data Subjects Rights, Principles, Technical and Organisational Measures (TOMs)

Norwegian Supervisory Authority (Datatilsynet)-Unknown (3/2/2021)

Controllers and Processors, Principles, Representative

Lithuanian Data Protection Authority (VDAI)-Registrų Centras (3/2/2021)

Controllers and Processors, Principles, Sensitive Data, Technical and Organisational Measures (TOMs)

Cypriot Data Protection Commissioner-Hellenic Bank (3/3/2021)

Controllers and Processors, Principles, Sensitive Data, Storage limitation, Technical and Organisational Measures (TOMs)

Cypriot Data Protection Commissioner-Cypriot Real Estate Registration Authority (3/3/2021)

Controllers and Processors, Cooperation with Supervisory Authorithy, Data Subjects Rights, Technical and Organisational Measures (TOMs)

Cypriot Data Protection Commissioner-KEPIDES (3/3/2021)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-I-DE Redes Eléctricas Inteligentes, S.A.U (3/2/2021)

Performance of Contract, Principles, Purpose limitation, Sensitive Data

Spanish Data Protection Authority (aepd)-Vamavi Phone S.L. (2/11/2021)

Controllers and Processors, Data Processing Agreement (DPA), Data Subjects Rights, Data Transfers

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-ING Bank N.V. Amsterdam – Bucharest office (2/10/2021)

Controllers and Processors, Data Processing Agreement (DPA), Data Subjects Rights

Polish National Personal Data Protection Office (UODO)-Unknown (1/5/2021)

Controllers and Processors, Data Breaches

Data Protection Authority of Ireland-University College Dublin (12/17/2020)

Controllers and Processors, Data Breaches, Principles, Sensitive Data, Storage limitation, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-Vodafone España, SAU (2/12/2021)

Controllers and Processors, Principles, Representative

Dutch Supervisory Authority for Data Protection (AP)-OLVG (2/11/2021)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Azienda sanitaria provinciale di Enna (1/14/2021)

Controllers and Processors, Lawfulness of Processing, Principles, Representative, Sensitive Data

Norwegian Supervisory Authority (Datatilsynet)-Unknown (1/12/2021)

Controllers and Processors, Principles, Representative

Norwegian Supervisory Authority (Datatilsynet)-Coop Finnmark SA (1/14/2021)

Controllers and Processors, Lawfulness of Processing, Representative

Polish National Personal Data Protection Office (UODO)-Śląski Uniwersytet Medyczny (Medical University of Silesia) (1/5/2021)

Controllers and Processors, Data Breaches, Data Subjects Rights

Norwegian Supervisory Authority (Datatilsynet)-Aquateknikk AS (1/19/2021)

Controllers and Processors, Principles, Representative

Belgian Data Protection Authority (APD)-Unknown (1/22/2021)

Controllers and Processors, Integrity and confidentiality, Principles, Technical and Organisational Measures (TOMs)

French Data Protection Authority (CNIL)-Unknown (1/27/2021)

Controllers and Processors, Technical and Organisational Measures (TOMs)

French Data Protection Authority (CNIL)-Unknown (1/27/2021)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Belgian Data Protection Authority (APD)-Family Service / N.D.P.K. nv. (1/27/2021)

Consent, Controllers and Processors, Data Subjects Rights, Lawfulness of Processing, Principles, Representative

Polish National Personal Data Protection Office (UODO)-Smart Cities Sp. z o.o. (12/9/2020)

Controllers and Processors, Cooperation with Supervisory Authorithy, Representative

Italian Data Protection Authority (Garante)-Azienda Unità Sanitaria Locale Toscana Sud Est (12/17/2020)

Controllers and Processors, Data Processing Agreement (DPA), Data Subjects Rights, Integrity and confidentiality, Principles

Norwegian Supervisory Authority (Datatilsynet)-Cyberbook AS (2/3/2021)

Controllers and Processors, Principles, Representative

Polish National Personal Data Protection Office (UODO)-Towarzystwo Ubezpieczeń i Reasekuracji WARTA S.A. (12/28/2020)

Controllers and Processors, Data Breaches, Data Subjects Rights

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Qualitance QBS SA (12/29/2020)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-ING Bank N.V. Amsterdam – Bucharest office (12/30/2020)

Controllers and Processors, Principles, Representative

Norwegian Supervisory Authority (Datatilsynet)-Innovasjon Norge (1/4/2021)

Controllers and Processors, Principles, Representative

Polish National Personal Data Protection Office (UODO)-TUiR Warta S.A. (12/9/2020)

Controllers and Processors, Data Breaches, Data Subjects Rights

Norwegian Supervisory Authority (Datatilsynet)-Lindstrand Trading AS (1/6/2021)

Controllers and Processors, Principles, Representative

Norwegian Supervisory Authority (Datatilsynet)-Gveik AS (1/7/2021)

Controllers and Processors, Principles, Representative

Estonian Data Protection Authority (AKI)-Apotheka e-apteek (12/1/2020)

Controllers and Processors, Principles, Representative

Estonian Data Protection Authority (AKI)-Südameapteegi e-apteek (12/1/2020)

Controllers and Processors, Principles, Representative

Estonian Data Protection Authority (AKI)-Azeta.ee e-apteek (12/1/2020)

Controllers and Processors, Principles, Representative

Data Protection Authority of Niedersachsen-notebooksbilliger.de (1/8/2021)

Controllers and Processors, Principles, Representative

Polish National Personal Data Protection Office (UODO)-ID Finance Poland Sp. z o.o. (12/17/2020)

Data Subjects Rights, Integrity and confidentiality, Principles, Technical and Organisational Measures (TOMs)

Data Protection Authority of Ireland-Twitter International Company (12/15/2020)

Controllers and Processors, Data Breaches

Data State Inspectorate (DSI)-Unknown (12/15/2020)

Controllers and Processors, Principles, Representative

French Data Protection Authority (CNIL)-Doctor (12/17/2020)

Controllers and Processors, Data Subjects Rights, Technical and Organisational Measures (TOMs)

French Data Protection Authority (CNIL)-Doctor (12/17/2020)

Controllers and Processors, Data Subjects Rights, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-Online Services (12/15/2020)

Consent, Controllers and Processors, Data Protection Officer (DPO), Data Subjects Rights, Lawfulness of Processing

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Robinson Tours Ltd. (Robinson Tours Idegenforgalmi és Szolgáltató Kft.) (12/16/2020)

Controllers and Processors, Data Breaches, Lawfulness of Processing, Performance of Contract, Principles, Privacy by Design

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Next Time Media Agency Ltd. (Next Time Media Ügynökség Kft.) (12/16/2020)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Unknown (12/16/2020)

Principles, Purpose limitation, Sensitive Data

Austrian Data Protection Authority (dsb)-Private Individual (10/19/2020)

Controllers and Processors, Lawfulness of Processing, Representative

Belgian Data Protection Authority (APD)-Unknown (11/13/2020)

Controllers and Processors, Data Subjects Rights, Principles, Representative

Spanish Data Protection Authority (aepd)-Conseguridad SL (10/26/2020)

Controllers and Processors, Data Protection Officer (DPO)

Spanish Data Protection Authority (aepd)-Vodafone España, S.A.U. (11/11/2020)

Controllers and Processors, Principles, Representative

Spanish Data Protection Authority (aepd)-Vodafone España, S.A.U. (11/16/2020)

Controllers and Processors, Principles, Representative

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Dada Creation S.R.L. (11/24/2020)

Controllers and Processors, Data Subjects Rights, Technical and Organisational Measures (TOMs)

Data Protection Authority of Sweden (Integritetsskyddsmyndigheten)-Gnosjö Municipality (11/25/2020)

Controllers and Processors, Data Protection Impact Assessment (DPIA), Data Subjects Rights, Principles, Representative

Cypriot Data Protection Commissioner-Grant Ideas Ltd (10/19/2020)

Controllers and Processors, Principles, Representative

Cypriot Data Protection Commissioner-Bank of Cyprus Public Company Ltd (10/19/2020)

Access Requests (DSAR), Controllers and Processors, Data Subjects Rights, Integrity and confidentiality, Principles, Representative, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-Avata Hispania, S.L. (10/3/2020)

Controllers and Processors, Principles, Representative

Spanish Data Protection Authority (aepd)-Callesgarcia, S.L. (10/6/2020)

Controllers and Processors, Principles, Representative

Italian Data Protection Authority (Garante)-Comune di Casaloldo (9/3/2020)

Controllers and Processors, Principles, Representative

Lithuanian Data Protection Authority (VDAI)-Vilnius City Municipality Administration (10/21/2020)

Accuracy, Controllers and Processors, Principles, Representative

Spanish Data Protection Authority (aepd)-Vodafone España, S.A.U. (10/28/2020)

Controllers and Processors, Principles, Representative

Cypriot Data Protection Commissioner-Cyprus Police (10/22/2020)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-Vodafone España, S.A.U. (11/3/2020)

Controllers and Processors, Principles, Representative

Spanish Data Protection Authority (aepd)-Telefonica Moviles Espana, S.A.U. (11/5/2020)

Controllers and Processors, Principles, Representative

Spanish Data Protection Authority (aepd)-Vodafone España, S.A.U. (11/19/2020)

Controllers and Processors, Principles, Representative

Spanish Data Protection Authority (aepd)-Xfera Moviles S.A. (11/6/2020)

Controllers and Processors, Cooperation with Supervisory Authorithy

Belgian Data Protection Authority (APD)-Former mayor of a community (9/7/2020)

Controllers and Processors, Principles, Representative

Spanish Data Protection Authority (aepd)-GLP Instalaciones 86, SL (9/22/2020)

Controllers and Processors, Principles, Representative

Data Protection Authority of Hamburg-H&M Hennes & Mauritz Online Shop A.B. & Co. KG (10/1/2020)

Controllers and Processors, Principles, Representative

Italian Data Protection Authority (Garante)-Azienda Ospedaliera di Rilievo Nazionale ‘Antonio Cardarelli’ (Private Hospital) (9/30/2020)

Controllers and Processors, Data Processing Agreement (DPA), Data Subjects Rights, Lawfulness of Processing, Representative

Italian Data Protection Authority (Garante)-Scanshare s.r.l. (9/30/2020)

Controllers and Processors, Lawfulness of Processing, Principles, Representative, Sensitive Data, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-Xfera Moviles S.A. (9/25/2020)

Controllers and Processors, Principles, Representative

Polish National Personal Data Protection Office (UODO)-Entrepreneur running a non-public nursery and pre-school (6/3/2020)

Controllers and Processors, Cooperation with Supervisory Authorithy, Representative

Spanish Data Protection Authority (aepd)-Lycamobile (10/6/2020)

Controllers and Processors, Principles, Representative

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Megareduceri TV S.R.L. (10/1/2020)

Controllers and Processors, Cooperation with Supervisory Authorithy, Representative

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Asociația de proprietari Militari R (10/1/2020)

Controllers and Processors, Cooperation with Supervisory Authorithy, Representative

Spanish Data Protection Authority (aepd)-Venu Sanz Chef, S.L. (9/30/2020)

Controllers and Processors, Principles, Representative

Norwegian Supervisory Authority (Datatilsynet)-Odin Flissenter AS (9/25/2020)

Controllers and Processors, Principles, Representative

Spanish Data Protection Authority (aepd)-Private Person (10/9/2020)

Controllers and Processors, Data minimisation, Principles, Representative

Spanish Data Protection Authority (aepd)-Centro de Investigación y Estudio para la Obesidad, SL (10/9/2020)

Controllers and Processors, Principles, Representative

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-S.C. Marsorom S.R.L. (10/15/2020)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Polish National Personal Data Protection Office (UODO)-Office for geodesy and cartography (7/15/2020)

Controllers and Processors, Cooperation with Supervisory Authorithy, Representative

Spanish Data Protection Authority (aepd)-Vodafone España SAU (7/31/2020)

Controllers and Processors, Principles, Representative

Estonian Data Protection Authority (AKI)-Police Officer (8/17/2020)

Controllers and Processors, Principles, Representative

Spanish Data Protection Authority (aepd)-Basketball Federation of Castilla and Leon (8/28/2020)

Controllers and Processors, Principles, Representative

Polish National Personal Data Protection Office (UODO)-Surveyor General of Poland (‘GKK’) (8/31/2020)

Controllers and Processors, Principles, Representative

Spanish Data Protection Authority (aepd)-Telefónica Móviles España, SAU (9/1/2020)

Controllers and Processors, Principles, Representative

Polish National Personal Data Protection Office (UODO)-Warsaw University of Life Sciences (9/8/2020)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Forbes Hungary (7/23/2020)

Controllers and Processors, Principles, Representative

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Apartment building owners association (9/1/2020)

Controllers and Processors, Data Subjects Rights, Principles, Representative

Spanish Data Protection Authority (aepd)-Vodafone España, SAU (9/17/2020)

Controllers and Processors, Principles, Representative

Spanish Data Protection Authority (aepd)-Political Party (9/11/2020)

Controllers and Processors, Principles, Representative

Spanish Data Protection Authority (aepd)-Party of the Socialists of Catalonia (8/17/2020)

Principles, Purpose limitation

Spanish Data Protection Authority (aepd)-Bankia S.A. (8/28/2020)

Principles, Purpose limitation

Spanish Data Protection Authority (aepd)-Vodafone España, SAU (8/4/2020)

Controllers and Processors, Principles, Representative

Italian Data Protection Authority (Garante)-Cavauto S.R.L. (8/10/2020)

Consent, Controllers and Processors, Lawfulness of Processing, Principles, Representative

Italian Data Protection Authority (Garante)-Community of Baronissi (8/10/2020)

Controllers and Processors, Principles, Representative

Deputy Data Protection Ombudsman-Acc Consulting Varsinais-Suomi (8/5/2020)

Controllers and Processors, Principles, Representative

Austrian Data Protection Authority (dsb)-Bank (8/5/2020)

Controllers and Processors, Principles, Representative

Italian Data Protection Authority (Garante)-School (8/5/2020)

Controllers and Processors, Principles, Representative

Italian Data Protection Authority (Garante)-Mapei S.p.A. (8/4/2020)

Controllers and Processors, Data Subjects Rights, Principles, Representative

Italian Data Protection Authority (Garante)-Supermarket (8/4/2020)

Controllers and Processors, Principles, Representative

Italian Data Protection Authority (Garante)-Community of Manduria (7/30/2020)

Controllers and Processors, Principles, Representative

Italian Data Protection Authority (Garante)-Community of San Giorgio Jonico (7/29/2020)

Controllers and Processors, Principles, Representative

Italian Data Protection Authority (Garante)-Region of Campania (7/29/2020)

Controllers and Processors, Principles, Representative

Belgian Data Protection Authority (APD)-Communal political association (7/28/2020)

Controllers and Processors, Data Subjects Rights, Principles, Representative

Spanish Data Protection Authority (aepd)-Global Business Travel Spain SLU (7/10/2020)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Belgian Data Protection Authority (APD)-Google Belgium SA (7/14/2020)

Controllers and Processors, Data Subjects Rights, Principles, Representative

Spanish Data Protection Authority (aepd)-Banco Bilbao Vizcaya Argentaria, SA (7/20/2020)

Controllers and Processors, Principles, Representative

Spanish Data Protection Authority (aepd)-Orange Espagne S.A.U. (7/20/2020)

Controllers and Processors, Principles, Representative

Spanish Data Protection Authority (aepd)-El Periódico de Catalunya, S.L.U. (7/23/2020)

Controllers and Processors, Principles, Representative

Spanish Data Protection Authority (aepd)-Telefónica Móviles España, SAU (7/23/2020)

Controllers and Processors, Principles, Representative

Spanish Data Protection Authority (aepd)-Telefónica Móviles España, SAU (7/23/2020)

Controllers and Processors, Principles, Representative

Spanish Data Protection Authority (aepd)-Telefónica Móviles España, SAU (7/23/2020)

Controllers and Processors, Principles, Representative

Spanish Data Protection Authority (aepd)-El Real Sporting de Gijón S.A.D. (7/23/2020)

Controllers and Processors, Data Protection Officer (DPO), Lawfulness of Processing

Belgian Data Protection Authority (APD)-Operator of CCTV of a residential building (7/14/2020)

Controllers and Processors, Data Protection Officer (DPO), Lawfulness of Processing

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Romanian Post National Company (7/30/2020)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-SC Cntar Tarom SA (7/27/2020)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Norwegian Supervisory Authority (Datatilsynet)-Østfold HF Hospital (6/22/2020)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Norwegian Supervisory Authority (Datatilsynet)-Aquateknikk AS (6/19/2020)

Controllers and Processors, Principles, Representative

Spanish Data Protection Authority (aepd)-National Police Brigade (6/19/2020)

Controllers and Processors, Principles, Representative

Italian Data Protection Authority (Garante)-Comune di Colledara (1/30/2020)

Controllers and Processors, Principles, Representative

Italian Data Protection Authority (Garante)-San Giorgio Jonico (3/5/2020)

Access Requests (DSAR), Controllers and Processors, Data Subjects Rights, Principles, Representative

Norwegian Supervisory Authority (Datatilsynet)-Odin Flissenter AS (7/2/2020)

Controllers and Processors, Principles, Representative

Spanish Data Protection Authority (aepd)-Saunier-Tec Mantenimientos de Calor y Frio, SL. (7/2/2020)

Controllers and Processors, Data Breaches

Spanish Data Protection Authority (aepd)-Xfera Moviles S.A. (7/2/2020)

Controllers and Processors, Cooperation with Supervisory Authorithy, Representative

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Proleasing Motors SRL (7/9/2020)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Polish National Personal Data Protection Office (UODO)-East Power Sp. z o.o. (7/10/2020)

Controllers and Processors, Cooperation with Supervisory Authorithy, Representative

Norwegian Supervisory Authority (Datatilsynet)-Municipality of Rælingen (7/10/2020)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Merlini s.r.l. (7/13/2020)

Consent, Controllers and Processors, Data Processing Agreement (DPA), Lawfulness of Processing, Principles, Representative

Italian Data Protection Authority (Garante)-Wind Tre S.p.A. (7/13/2020)

Controllers and Processors, Data Subjects Rights, Principles, Representative, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-Centro Internacional De Crecimiento Laboral Y Profesional S.L. (7/10/2020)

Controllers and Processors, Principles, Representative

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Telekom Romania Communications SA (4/23/2020)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Bank (3/26/2020)

Controllers and Processors, Principles, Representative

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Accounting firm (1/24/2020)

Controllers and Processors, Data Subjects Rights, Technical and Organisational Measures (TOMs)

Data Protection Authority of Baden-Wuerttemberg-Allgemeine Ortskrankenkasse (‘AOK’) (health insurance company) (6/30/2020)

Controllers and Processors, Principles, Representative, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-Miraclia (telecommunications company) (6/23/2020)

Controllers and Processors, Principles, Representative

Spanish Data Protection Authority (aepd)-Comunidad de propietarios demelza beach (6/22/2020)

Controllers and Processors, Data Subjects Rights, Principles, Representative

Spanish Data Protection Authority (aepd)-Café Bar (6/16/2020)

Controllers and Processors, Data Subjects Rights, Principles, Representative

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Enel Energie (6/18/2020)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Telekom Romania (6/11/2020)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Digi Távközlési Szolgáltató Kft. (‘Digi’) (electronic communication service provider) (6/12/2020)

Controllers and Processors, Principles, Purpose limitation, Technical and Organisational Measures (TOMs)

Data Protection Authority of Sweden (Integritetsskyddsmyndigheten)-Housing Association (6/16/2020)

Controllers and Processors, Principles, Representative

Belgian Data Protection Authority (APD)-Unknown (6/19/2020)

Access Requests (DSAR), Controllers and Processors, Data Subjects Rights, Principles, Representative

Belgian Data Protection Authority (APD)-Unknown (6/16/2020)

Access Requests (DSAR), Controllers and Processors, Cooperation with Supervisory Authorithy, Data Subjects Rights

Belgian Data Protection Authority (APD)-Municipal employee (6/8/2020)

Controllers and Processors, Principles, Representative

Danish Data Protection Authority (Datatilsynet)-Lejre Municipality (6/30/2020)

Controllers and Processors, Data Breaches, Principles, Representative

Data Protection Authority of Ireland-Tusla Child and Family Agency (6/30/2020)

Controllers and Processors, Data Breaches

Deputy Data Protection Ombudsman-Unknown Company (5/22/2020)

Controllers and Processors, Principles, Representative

Deputy Data Protection Ombudsman-Taksi Helsinki (5/29/2020)

Controllers and Processors, Data Protection Impact Assessment (DPIA), Principles, Representative

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Creditor (3/9/2020)

Controllers and Processors, Principles, Representative

Spanish Data Protection Authority (aepd)-Consulting de Seguridad e Investigacion Mira Dp Madrid S.L. (6/9/2020)

Controllers and Processors, Principles, Representative

Spanish Data Protection Authority (aepd)-Glovoapp23 (6/9/2020)

Controllers and Processors, Data Protection Officer (DPO)

Norwegian Supervisory Authority (Datatilsynet)-Telenor Norge AS (5/3/2020)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Estee Lauder Romania (4/23/2020)

Controllers and Processors, Data Protection Officer (DPO), Lawfulness of Processing, Principles, Sensitive Data

Spanish Data Protection Authority (aepd)-Attorney (6/9/2020)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Enel Energie (3/25/2020)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Vodafone Romania (3/25/2020)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-Comune di Urago (2/13/2020)

Controllers and Processors, Principles, Representative

Polish National Personal Data Protection Office (UODO)-Vis Consulting Sp. z o.o. (3/9/2020)

Controllers and Processors, Cooperation with Supervisory Authorithy, Representative

Belgian Data Protection Authority (APD)-Proximus SA (4/28/2020)

Controllers and Processors, Cooperation with Supervisory Authorithy, Data Protection Officer (DPO), Representative

Data Protection Authority of Sweden (Integritetsskyddsmyndigheten)-National Government Service Centre (NGSC) (4/29/2020)

Controllers and Processors, Data Breaches, Data Subjects Rights

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Banca Comercială Română SA (5/5/2020)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Data Protection Authority of Sweden (Integritetsskyddsmyndigheten)-Health and Medical Board of the Region of Örebro County (5/12/2020)

Controllers and Processors, Principles, Representative

Data Protection Authority of Ireland-Tusla Child and Family Agency (5/17/2020)

Controllers and Processors, Principles, Representative

Deputy Data Protection Ombudsman-Kymen Vesi Oy (5/22/2020)

Controllers and Processors, Data Protection Impact Assessment (DPIA)

Spanish Data Protection Authority (aepd)-Private Person (3/16/2020)

Controllers and Processors, Principles, Representative

Spanish Data Protection Authority (aepd)-Oliveros Ustrell, S.L. (3/19/2020)

Controllers and Processors, Principles, Representative

Italian Data Protection Authority (Garante)-RTI – Reti Televisive Italiane s.p.a. (2/6/2020)

Controllers and Processors, Principles, Representative

Hellenic Data Protection Authority (HDPA)-Speech and Special Education Centre – Mihou Dimitra (3/20/2020)

Access Requests (DSAR), Controllers and Processors, Data Subjects Rights, Representative

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Directorate of Social and Child Welfare Institutions of the Ferencvaros District of Budapest (5/21/2019)

Controllers and Processors, Data Breaches

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Claim management company (6/3/2019)

Controllers and Processors, Principles, Representative

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Unknown (6/26/2019)

Access Requests (DSAR), Controllers and Processors, Data Subjects Rights, Principles, Representative

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Financial Enterprise (6/26/2019)

Controllers and Processors, Data Subjects Rights, Principles, Representative, Right to Object

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Budapest Environs Regional Court (7/17/2019)

Controllers and Processors, Principles, Representative

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Public area maintenance company (8/2/2019)

Controllers and Processors, Data Subjects Rights, Principles, Representative

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Unknown Company (10/15/2019)

Controllers and Processors, Data Subjects Rights, Principles, Representative, Technical and Organisational Measures (TOMs)

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Representative of a local government (3/4/2020)

Access Requests (DSAR), Controllers and Processors, Data Subjects Rights, Principles, Representative

Spanish Data Protection Authority (aepd)-Vodafone España, S.A.U. (3/3/2020)

Controllers and Processors, Principles, Representative

Spanish Data Protection Authority (aepd)-Vodafone España, S.A.U. (3/3/2020)

Controllers and Processors, Principles, Representative

Spanish Data Protection Authority (aepd)-Vodafone España, S.A.U. (3/4/2020)

Controllers and Processors, Principles, Representative

Italian Data Protection Authority (Garante)-Liceo Artistico Statale di Napoli (3/6/2020)

Controllers and Processors, Principles, Representative, Sensitive Data

Italian Data Protection Authority (Garante)-Liceo Scientifico Nobel di Torre del Greco (3/6/2020)

Controllers and Processors, Principles, Representative, Sensitive Data

Data Protection Authority of Sweden (Integritetsskyddsmyndigheten)-Google LLC (3/11/2020)

Access Requests (DSAR), Controllers and Processors, Data Subjects Rights, Principles, Representative

Norwegian Supervisory Authority (Datatilsynet)-Coop Finnmark SA (2/28/2020)

Controllers and Processors, Principles, Representative

Data Protection Authority of Nordrhein-Westfalen-Private person (YouTube-Channel) (8/5/2019)

Controllers and Processors, Principles, Representative

Spanish Data Protection Authority (aepd)-Cafetería Nagasaki (2/4/2020)

Controllers and Processors, Principles, Representative

Italian Data Protection Authority (Garante)-Community of Francavilla Fontana (1/15/2020)

Controllers and Processors, Principles, Representative

Data Protection Authority of Hamburg-Facebook Germany GmbH (7/11/1905)

Controllers and Processors, Data Protection Officer (DPO)

Data Protection Authority of Hamburg-Hamburger Verkehrsverbund GmbH (HVV GmbH) (7/11/1905)

Controllers and Processors, Data Breaches, Data Subjects Rights

Spanish Data Protection Authority (aepd)-Vodafone España, S.A.U. (2/27/2020)

Controllers and Processors, Principles, Representative

Spanish Data Protection Authority (aepd)-Vodafone ONO, S.A.U. (2/28/2020)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-HM Hospitales (2/25/2020)

Controllers and Processors, Principles, Representative

Dutch Supervisory Authority for Data Protection (AP)-Royal Dutch Tennis Association (‘KNLTB’) (3/3/2020)

Controllers and Processors, Principles, Representative

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Entirely Shipping & Trading S.R.L. (12/13/2019)

Consent, Controllers and Processors, Lawfulness of Processing, Principles, Representative

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Entirely Shipping & Trading S.R.L. (12/13/2019)

Consent, Controllers and Processors, Lawfulness of Processing, Principles, Representative, Sensitive Data

Italian Data Protection Authority (Garante)-Eni Gas e Luce (12/11/2019)

Access Requests (DSAR), Controllers and Processors, Data Subjects Rights, Principles, Representative, Right to Object

Italian Data Protection Authority (Garante)-Eni Gas e Luce (12/11/2019)

Controllers and Processors, Principles, Representative

Hellenic Data Protection Authority (HDPA)-Aegean Marine Petroleum Network Inc. (12/19/2019)

Controllers and Processors, Principles, Representative, Technical and Organisational Measures (TOMs)

Italian Data Protection Authority (Garante)-TIM (telecommunications operator) (1/15/2020)

Access Requests (DSAR), Controllers and Processors, Data Subjects Rights, Principles, Representative, Right to Object

Spanish Data Protection Authority (aepd)-Xfera Moviles S.A. (2/3/2020)

Controllers and Processors, Principles, Representative

Spanish Data Protection Authority (aepd)-Vodafone España, S.A.U. (2/3/2020)

Controllers and Processors, Principles, Representative

Spanish Data Protection Authority (aepd)-Vodafone España, S.A.U. (2/3/2020)

Controllers and Processors, Principles, Representative

Spanish Data Protection Authority (aepd)-Iberia Lineas Aereas de Espana, S.A. Operadora Unipersonal (2/3/2020)

Controllers and Processors, Data Subjects Rights, Principles, Representative, Right to Object

Spanish Data Protection Authority (aepd)-Vodafone España, S.A.U. (2/3/2020)

Controllers and Processors, Principles, Representative

Spanish Data Protection Authority (aepd)-Banco Bilbao Vizcaya Argentaria S.L. (2/3/2020)

Controllers and Processors, Data Subjects Rights, Principles, Representative, Right to Object

Spanish Data Protection Authority (aepd)-Queseria Artesenal Ameco S.L. (2/3/2020)

Controllers and Processors, Principles, Representative

Spanish Data Protection Authority (aepd)-Automoción (2/3/2020)

Controllers and Processors, Principles, Representative

Spanish Data Protection Authority (aepd)-Shop Macoyn, S.L. (12/10/2019)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Commission for Personal Data Protection (KZLD)-B.D. (10/7/2019)

Controllers and Processors, Cooperation with Supervisory Authorithy

Commission for Personal Data Protection (KZLD)-The Ministry of Interior Affairs (10/8/2019)

Controllers and Processors, Principles, Representative

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Hora Credit IFN SA (12/10/2019)

Controllers and Processors, Data Breaches, Data Subjects Rights, Principles, Technical and Organisational Measures (TOMs)

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-SC Enel Energie S.A. (Electricity Distributor) (12/16/2019)

Consent, Controllers and Processors, Data Subjects Rights, Lawfulness of Processing, Principles, Representative, Right to Object

Cypriot Data Protection Commissioner-Social Insurance Services of the Ministry of Labor, Welfare and Social Insurance (1/13/2020)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Military Hospital (10/24/2019)

Controllers and Processors, Data Subjects Rights, Technical and Organisational Measures (TOMs)

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Telekom Romania Mobile Communications SA (12/18/2019)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Unknown Company (12/11/2019)

Controllers and Processors, Data Subjects Rights, Principles, Representative, Technical and Organisational Measures (TOMs)

Information Commissioner (ICO)-Doorstep Dispensaree Ltd. (Pharmacy) (12/17/2019)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Homeowners Association (11/29/2019)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Data Protection Authority of Rheinland-Pfalz-Hospital (12/3/2019)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-S CNTAR TAROM SA (Airline) (12/4/2019)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-ING Bank N.V. (11/28/2019)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Royal President S.R.L. (11/29/2019)

Access Requests (DSAR), Controllers and Processors, Data Subjects Rights, Representative, Technical and Organisational Measures (TOMs)

The Federal Commissioner for Data Protection and Freedom of Information (BfDI)-Telecoms provider (1&1 Telecom GmbH) (11/11/2020)

Controllers and Processors, Technical and Organisational Measures (TOMs)

The Federal Commissioner for Data Protection and Freedom of Information (BfDI)-Rapidata GmbH (12/9/2019)

Controllers and Processors, Data Protection Officer (DPO)

Spanish Data Protection Authority (aepd)-VODAFONE ONO, S.A.U. (7/11/1905)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Data Protection Commision of Bulgaria (KZLD)-National Revenue Agency (9/3/2019)

Consent, Controllers and Processors, Lawfulness of Processing, Representative

Data Protection Authority of Baden-Wuerttemberg-Unknown (7/11/1905)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-Madrileña Red de Gas (Unknown)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Dutch Supervisory Authority for Data Protection (AP)-UWV (Dutch employee insurance service provider) (10/31/2019)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Slovak Data Protection Office-Social Insurance Agency (Unknown)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Czech Data Protection Auhtority (UOOU)-Alza.cz a.s. (Unknown)

Controllers and Processors, Data Protection Officer (DPO), Lawfulness of Processing

Czech Data Protection Auhtority (UOOU)-Individual entrepreneur – no further details published (Unknown)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-Corporación radiotelevisión espanola (11/19/2019)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-FAN Courier Express SRL (11/25/2019)

Controllers and Processors, Technical and Organisational Measures (TOMs)

French Data Protection Authority (CNIL)-Futura Internationale (11/21/2019)

Controllers and Processors, Data Subjects Rights, Principles, Representative

Spanish Data Protection Authority (aepd)-Xfera Moviles S.A. (11/19/2019)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-Restaurant (SANTI 3000, S.L.) (Unknown)

Controllers and Processors, Lawfulness of Processing, Representative

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Raiffeisen Bank SA (10/9/2019)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Vreau Credit SRL (10/9/2019)

Controllers and Processors, Data Subjects Rights, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-Vueling Airlines (10/1/2019)

Controllers and Processors, Principles, Representative

Cypriot Data Protection Commissioner-Doctor (7/11/1905)

Controllers and Processors, Principles, Representative

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-Inteligo Media SA (9/26/2019)

Controllers and Processors, Lawfulness of Processing, Representative

Slovak Data Protection Office-Unknown (Unknown)

Controllers and Processors, Lawfulness of Processing, Representative

Spanish Data Protection Authority (aepd)-Xfera Moviles S.A. (10/16/2019)

Controllers and Processors, Principles, Representative

Spanish Data Protection Authority (aepd)-Iberdrola Clientes (10/16/2019)

Controllers and Processors, Cooperation with Supervisory Authorithy

Slovak Data Protection Office-Slovak Telekom (Unknown)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Austrian Data Protection Authority (dsb)-Austrian Post (10/29/2019)

Controllers and Processors, Lawfulness of Processing, Representative

Polish National Personal Data Protection Office (UODO)-Major of Aleksandrów Kujawski (10/18/2019)

Controllers and Processors, Data Processing Agreement (DPA)

Spanish Data Protection Authority (aepd)-Vodafone España, S.A.U. (10/25/2019)

Controllers and Processors, Principles, Representative

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Organizer of SZIGET festival and VOLT festival (5/23/2019)

Controllers and Processors, Data Subjects Rights, Lawfulness of Processing, Representative

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-LEGAL COMPANY & TAX HUB SRL (7/5/2019)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Dutch Supervisory Authority for Data Protection (AP)-Haga Hospital (6/18/2019)

Controllers and Processors, Technical and Organisational Measures (TOMs)

French Data Protection Authority (CNIL)-ACTIVE ASSURANCES (car insurer) (7/25/2019)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Hellenic Data Protection Authority (HDPA)-PWC Business Solutions (7/30/2019)

Consent, Controllers and Processors, Data Subjects Rights, Lawfulness of Processing, Principles, Representative

Data Protection Authority of Sweden-School in Skellefteå (8/20/2019)

Controllers and Processors, Data minimisation, Data Protection Impact Assessment (DPIA), Principles, Sensitive Data

Austrian Data Protection Authority (dsb)-Company in the medical sector (8/1/2019)

Controllers and Processors, Data Protection Officer (DPO), Data Subjects Rights, Technical and Organisational Measures (TOMs)

Data Protection Commision of Bulgaria (KZLD)-National Revenue Agency (8/28/2019)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Data Protection Commision of Bulgaria (KZLD)-DSK Bank (8/28/2019)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Unknown (6/25/2019)

Controllers and Processors, Data Breaches

Norwegian Supervisory Authority (Datatilsynet)-Oslo Municipal Education Department (4/29/2019)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Polish National Personal Data Protection Office (UODO)-Morele.net (9/10/2019)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Spanish Data Protection Authority (aepd)-Professional Football League (LaLiga) (6/11/2019)

Controllers and Processors, Data Protection Officer (DPO), Lawfulness of Processing

French Data Protection Authority (CNIL)-Employer UNIONTRAD COMPANY (6/13/2019)

Controllers and Processors, Data minimisation, Data Subjects Rights, Principles, Technical and Organisational Measures (TOMs)

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Unknown (4/17/2019)

Controllers and Processors, Lawfulness of Processing, Representative

Data Protection Commision of Bulgaria (KZLD)-A.P. EOOD (3/26/2019)

Controllers and Processors, Lawfulness of Processing, Representative

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-UNICREDIT BANK SA (6/27/2019)

Controllers and Processors, Principles, Privacy by Design, Representative

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)-WORLD TRADE CENTER BUCHAREST SA (7/2/2019)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Information Commissioner (ICO)-Marriott International, Inc (10/30/2020)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Danish Data Protection Authority (Datatilsynet)-IDdesign A / S (2/12/2021)

Controllers and Processors, Principles, Representative, Storage limitation

Data Protection Authority of Baden-Wuerttemberg-Knuddels.de (11/21/2018)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Data Protection Authority of Hamburg-Kolibri Image Regina und Dirk Maass GbR (12/17/2018)

Controllers and Processors, Data Processing Agreement (DPA)

Data Protection Authority of Sachsen-Anhalt-Private person (2/5/2019)

Controllers and Processors, Lawfulness of Processing, Representative

Data Protection Authority of Hamburg-Unknown (7/10/1905)

Controllers and Processors, Data Breaches, Data Subjects Rights

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Debt collector (2/20/2019)

Controllers and Processors, Lawfulness of Processing, Representative

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Mayor’s Office of the city of Kecdkemét (2/28/2019)

Controllers and Processors, Lawfulness of Processing, Representative

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Unnamed financial institution (3/4/2019)

Controllers and Processors, Data Subjects Rights, Principles, Purpose limitation, Representative, Right to Erasure

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)-Hungarian political party (4/5/2019)

Controllers and Processors, Data Breaches, Data Subjects Rights

Italian Data Protection Authority (Garante)-Italian political party Movimento 5 Stelle (4/17/2019)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Lithuanian Data Protection Authority (VDAI)-Payment service provider UAB MisterTango (5/16/2019)

Controllers and Processors, Data Breaches, Data Subjects Rights, Principles

Austrian Data Protection Authority (dsb)-Private car owner (9/27/2018)

Controllers and Processors, Lawfulness of Processing, Representative

Austrian Data Protection Authority (dsb)-Private person (12/20/2018)

Consent, Controllers and Processors, Data Subjects Rights, Lawfulness of Processing, Representative

Belgian Data Protection Authority (APD)-Mayor (5/28/2019)

Controllers and Processors, Principles, Purpose limitation, Representative

Bulgarian Commission for Personal Data Protection (KZLD)-Bank (12/4/2018)

Controllers and Processors, Principles, Purpose limitation, Representative

Czech Data Protection Auhtority (UOOU)-Unknown (2/28/2019)

Controllers and Processors, Technical and Organisational Measures (TOMs)

Czech Data Protection Auhtority (UOOU)-Credit brokerage (2/4/2019)

Controllers and Processors, Technical and Organisational Measures (TOMs)

EU Cyber Resilience Act (CRA)

Technical and Organisational Measures (TOMs)

Case C‑21/23 CJEU (full text in german)

Controllers and Processors, Data Breaches, Health Data, Lawfulness of Processing, Principles, Sensitive Data

Press Release No 159/24 on Judgment of the Court in Case C-21/23 CJEU

Controllers and Processors, Data Breaches, Health Data, Lawfulness of Processing, Principles, Sensitive Data

New data protection audit framework launched to help organisations improve compliance by UK ICO

Controllers and Processors, Data Sharing, Data Subjects Rights

Решение Рег.№ ППН-02-399-2019 КЗЛД – НАП

Controllers and Processors, Data Breaches, Lawfulness of Processing

Наказателно постановление-04-2019-КЗЛД-НАП

Controllers and Processors, Data Breaches, Lawfulness of Processing

The EU’s International Cooperation on Cyber Capacity Building| second edition

Technical and Organisational Measures (TOMs)

Secure Future Initiative Report by Microsoft

Technical and Organisational Measures (TOMs)

Cyber Threat Modelling for Risk Assessment by CSB

Risk Management, Technical and Organisational Measures (TOMs)

Guide to Good Governance in Cybersecurity by DCSD

Technical and Organisational Measures (TOMs)

ENISA Threat Landscape 2024 EU Agency for Cybersecurity

Technical and Organisational Measures (TOMs)

Meta Fined $101 Million for Exposing Millions of Passwords in Plaintext

Lawfulness of Processing, Technical and Organisational Measures (TOMs)

C-340/21

Controllers and Processors, Liability and Remedies, Supervisory Authorities, Technical and Organisational Measures (TOMs)

MITIGATING SECURITY & PRIVACY RISKS by Data Security Council of India

Technical and Organisational Measures (TOMs)

Telegram’s New Policy: User Data to Be Shared with Authorities in Criminal Cases

Data Sharing, Data Subjects Rights

Genetic Testing Company 23andMe Pays $30M for Data Breach

Data Breaches, Sensitive Data

LinkedIn Used User Data for AI Training Before Updating Its Terms

AI, Data Sharing, Data Subjects Rights, Lawfulness of Processing

Privacy Impact Assessment (PIA) Templates by CNIL

Data Protection Impact Assessment (DPIA)

Case C 203/22 on AI and automated decisions, the right of access under the GDPR, and the protection of trade secrets

AI, Automated Decision-making, Controllers and Processors, Specific processing situations

Recommendation 01/2019 on the draft list of the European Data Protection Supervisor regarding the processing operations subject to the requirement of a data protection impact assessment (Article 39.4 of Regulation (EU) 2018/1725) |EPDB

Controllers and Processors, Data Protection Impact Assessment (DPIA)

Opinion 37/2023 on the draft decision of the competent supervisory authority of Luxemburg regarding the approval of the requirements for accreditation of a certification body pursuant to Article 43.3 (GDPR) |EPDB

Certification, Controllers and Processors

Opinion 38/2023 on the draft decision of the competent supervisory authority of Slovenian regarding the approval of the requirements for accreditation of a certification body pursuant to Article 43.3 (GDPR). |EPDB

Certification, Controllers and Processors

National Strategy to Advance Privacy-Preserving Data Sharing and Analytics by the EO by the US President

Anonymisation, Controllers and Processors, Technical and Organisational Measures (TOMs)

EO 13800 on Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure

Controllers and Processors, Technical and Organisational Measures (TOMs)

Comparison of U.S. State Privacy Laws. Data Protection Assessments by CIPL

Controllers and Processors, Data Protection Impact Assessment (DPIA)

THE NEW STANDARD CONTRACTUAL CLAUSES – QUESTIONS AND ANSWERS

Data Transfers, Standard Contractual Clauses (SCC)

CASE STUDIES (2018 – 2023) by the Irish DPC

Access Requests (DSAR), Controllers and Processors, Data Breaches, Data Subjects Rights, Liability and Remedies, Supervisory Authorities

Draft Impact Assessment Framework by the UK ICO

Controllers and Processors, Data Protection Impact Assessment (DPIA)

2023 Coordinated Enforcement Action Designation and Position of Data Protection Officers by EDPB

Controllers and Processors, Data Protection Officer (DPO)

Guide to Technical and Organisational Data Protection Measures (TOM) by the Swiss FDPIC

Controllers and Processors, Technical and Organisational Measures (TOMs)

One-stop-shop case digest on Security of Processing and Data Breach Notification by the EDPB

Controllers and Processors, Data Breaches, Technical and Organisational Measures (TOMs)

Annex: A summary of the Transparency in Health and Social Care guidance impact assessment by the UK ICO

Controllers and Processors, Data Protection Impact Assessment (DPIA), Principles, Sensitive Data, Transparency

Transparency in health and social care by the UK ICO

Controllers and Processors, Data Protection Impact Assessment (DPIA), Principles, Sensitive Data, Transparency

Privacy-Enhancing and Privacy Preserving Technologies: Understanding the Role of PETs and PPTs in the Digital Age by CIPL

Controllers and Processors, Technical and Organisational Measures (TOMs)

Cybersecurity of Artificial Intelligence in the AI Act by the European Commision

Controllers and Processors, Technical and Organisational Measures (TOMs)

[Draft] Guidelines on the processing of personal data in regard to recruitment by the UK ICO

Automated Decision-making, Controllers and Processors, Data Protection Impact Assessment (DPIA), Employment, Specific processing situations

Understanding the Role of PETs and PPTs in the Digital Age

Controllers and Processors, Technical and Organisational Measures (TOMs)

[DRAFT] Data Confidentiality – Identifying and Protecting Assets Against Data Breaches by NIST

Controllers and Processors, Data Breaches

Press Release No 184-23 by the CJEU

Controllers and Processors, Joint Controllers, Liability and Remedies, Supervisory Authorities

SME Guide on Information Security Controls by European Digital SME Alliance

Controllers and Processors, Technical and Organisational Measures (TOMs)

Practical Guide on Controller to Processor Contracts by the Irish DPC

Controllers and Processors, Data Processing Agreement (DPA)

Privacy Impact Assessment Tool by the Australian Government

Controllers and Processors, Data Protection Impact Assessment (DPIA)

Guidelines for evaluating differential priavacy gurantees by NIST

Anonymisation, Controllers and Processors, Technical and Organisational Measures (TOMs)

Guidelines issued by the Malta Gaming Authority for the Maltese Gaming Industry

Gaming, Specific processing situations

AUTOMATED DECISIONMAKING TECHNOLOGY REGULATIONS (DRAFT) by CPPA

Automated Decision-making, Controllers and Processors

DPIA for AI template

Controllers and Processors, Data Protection Impact Assessment (DPIA)

AI and Data Protection Risk Toolkit by UK ICO

AI, Controllers and Processors, Data Protection Impact Assessment (DPIA), Specific processing situations

Audit Requirements for Personal Data Processing Activities involving AI by AEPD

Controllers and Processors, Data Protection Impact Assessment (DPIA), Technical and Organisational Measures (TOMs)

Automated Decision-Making Under the GDPR by the FPF

AI, Automated Decision-making, Controllers and Processors, Specific processing situations

Bulgarian CPPD Newsletter

Children as data subjects, Controllers and Processors, Data Subjects Rights, Technical and Organisational Measures (TOMs)

Human rights Impact Assessments for AI

Controllers and Processors, Data Protection Impact Assessment (DPIA)

Data breach preparation and response by the Australian Information Commisioners

Controllers and Processors, Data Breaches

Data Breach Process Guidance by HSE

Controllers and Processors, Data Breaches

Baseline Cyber Security for SMEs

Controllers and Processors, Technical and Organisational Measures (TOMs)

Practice Guide to Anonymising Personal Data

Anonymisation, Controllers and Processors

Recommendations 1-2022 on the Application for Approval and on the elements and principles to be found in Controller Binding Corporate Rules (Art. 47 GDPR)

Code of Conduct, Controllers and Processors

Study on the appropriate safeguards under Article 89(1) GDPR for the processing of personal data for scientific research

Material scope, Scientific Research, Specific processing situations

C-534/20

Controllers and Processors, Data Protection Officer (DPO)

C-77/21

Principles, Purpose limitation

Case C-60/22

Accountability, Controllers and Processors, Joint Controllers, Principles

C-453/21

Controllers and Processors, Data Protection Officer (DPO)

Frequently Asked Questions (FAQs) on the Data Act by the EU Commission

Controllers and Processors, Data Sharing

Noyb Complaint Case: C-082-01 to EU Data protection Supervisor against EU Parliament

Controllers and Processors, Data Breaches, Public Administrative Body

Effective Cyber Risk Management: A best practice governance guide for digitally secure and resilient organisations by Governance Institute of Australia

Risk Management, Technical and Organisational Measures (TOMs)

Decision by Dutch Data Protection Authority to impose an administrative fine on Uber |English

Controllers and Processors, Data Breaches, Data Subjects Rights

Noyb Complaint Case: C-082-02 to EU Data protection Supervisor against EU Parliament

Controllers and Processors, Data Breaches, Public Administrative Body

NIST Special Publication_1800: Implementing a Zero Trust Architecture

Technical and Organisational Measures (TOMs)

Meta Platforms Ireland v EDPB (Case T-319/24)

Controllers and Processors, Data Sharing, Data Subjects Rights

Data protection code of practice for digital identity schemes in Afrtica

Code of Conduct, Controllers and Processors

NIST Special Publication_1800-29 Data Confidentiality- Detect, Respond to, and Recover from Data Breaches

Controllers and Processors, Data Breaches

CNIL open source PIA software – data protection impact assessment

Data Protection Impact Assessment (DPIA)

Frequently Asked Questions (FAQ) NIS2 in Belgium by Centre for cybersecurity Belgium

Technical and Organisational Measures (TOMs)

Data protection impact assessment for AI Solutions by Danish DPA

AI, Controllers and Processors, Data Protection Impact Assessment (DPIA), Specific processing situations

Global Third Party Cybersecurity Breaches by SecurityScorecard

Controllers and Processors, Data Breaches

Case 2:24-cv-05140 by the attorney general of California

Consent, Controllers and Processors, Data Sharing, Lawfulness of Processing

Guidelines scraping by private organizations and individuals by the Dutch Data Protection Authority

Automated Decision-making, Controllers and Processors

Data protection impact assessment on the processing of personal data on government Facebook Pages

Controllers and Processors, Data Protection Impact Assessment (DPIA)

Comments on Guidelines 07/2020 on the concepts of controller and processor in the GDPR from the perspective of the Translation and Interpreting Sector by FIT Europe and EUATC

Controllers and Processors

Controller – Processor Assessment Tool

Controllers and Processors

Opinion 18/2021 on the draft Standard Contractual Clauses submitted by the LT SA (Article 28(8) GDPR) |EDPB

Controllers and Processors, Data Transfers, Standard Contractual Clauses (SCC)

Opinion 20/2021 on Tobacco Traceability System |EDPB

Controllers and Processors, Data Sharing

Data Sharing Code of Practice by UK ICO [Controller to Controller]

Controllers and Processors, Data Sharing

Personal data breach report form

Controllers and Processors, Data Breaches

Opinion 23/2021 on the draft decision of the competent supervisory authority of Czech Republic regarding the approval of the requirements for accreditation of a code of conduct monitoring body pursuant to article 41 GDPR |EDPB

Code of Conduct, Controllers and Processors

Opinion 24/2021 on the draft decision of the competent supervisory authority of Slovakia regarding the approval of the requirements for accreditation of a code of conduct monitoring body pursuant to article 41 GDPR |EDPB

Code of Conduct, Controllers and Processors

Opinion 16/2021 on the draft decision of the Belgian Supervisory Authority regarding the “EU Data Protection Code of Conduct for Cloud Service Providers” submitted by Scope Europe |EDPB

Code of Conduct, Controllers and Processors

Opinion 17/2021 on the draft decision of the French Supervisory Authority regarding the European code of conduct submitted by the Cloud Infrastructure Service Providers (CISPE) |EDPB

Code of Conduct, Controllers and Processors

Opinion 1/2022 on the draft decision of the Luxembourg Supervisory Authority regarding the GDPR – CARPA certification criteria |EPDB

Certification, Controllers and Processors

Opinion 14/2022 on the draft decision of the competent supervisory authority of Bulgaria regarding the approval of the requirements for accreditation of a code of conduct monitoring body pursuant to article 41 GDPR |EPDB

Code of Conduct, Controllers and Processors

Opinion 15/2022 on the draft decision of the competent supervisory authority of Luxembourg regarding the approval of the requirements for accreditation of a code of conduct monitoring body pursuant to article 41 GDPR |EPDB

Code of Conduct, Controllers and Processors

Opinion 16/2022 on the draft decision of the competent supervisory authority of Slovenia regarding the approval of the requirements for accreditation of a code of conduct monitoring body pursuant to article 41 GDPR |EPDB

Code of Conduct, Controllers and Processors

Opinion 25/2022 regarding the European Privacy Seal (EuroPriSe ) certification criteria for the certification of processing operations by processors |EPDB

Certification, Controllers and Processors

Opinion 15/2023 on the draft decision of the Dutch Supervisory Authority regarding the Brand Compliance certification criteria |EPDB

Certification, Controllers and Processors

Opinion 1/2023 on the draft decision of the competent supervisory authority of Croatia regarding the approval of the requirements for accreditation of a code of conduct monitoring body pursuant to Article 41 GDPR |EPDB

Code of Conduct, Controllers and Processors

Opinion 02/2023 on the draft decision of the competent supervisory authority of Latvia regarding the approval of the requirements for accreditation of a code of conduct monitoring body pursuant to Article 41 GDPR |EPDB

Code of Conduct, Controllers and Processors

Opinion 03/2023 on the draft decision of the competent supervisory authority of Romania regarding the approval of the requirements for accreditation of a code of conduct monitoring body pursuant to article 41 GDPR |EPDB

Code of Conduct, Controllers and Processors

Opinion 28/2022 on the Europrivacy criteria of certification regarding their approval by the Board as European Data Protection Seal pursuant to Article 42.5 (GDPR) |EPDB

Certification, Controllers and Processors

Certified Data Protection Officer by PECB

Data Protection Officer (DPO)

EO 13800 on Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure

Technical and Organisational Measures (TOMs)

Personal data breaches in the health sector: how to avoid them (and how to deal with them when they happen) by the UK ICO

Data Breaches, Health Data

Cybersecurity panel session: SME Focus by the UK ICO

Technical and Organisational Measures (TOMs)

Cybersecurity panel session: Supply chain attacks by the UK ICO

Technical and Organisational Measures (TOMs)

Cybersecurity panel session: An introduction to incident response, common cyber threats and ways to mitigate risk by the UK ICO

Technical and Organisational Measures (TOMs)

Human rights Impact Assessments for AI by Access Now

AI, Data Protection Impact Assessment (DPIA)

Practice Guide to Anonymising Personal Data by Stiftung Dateschutz

Anonymisation

Joint statement on data scraping and the protection of privacy

Personal Data Collection

GUIDE TO BASIC ANONYMISATION | PDPC Singapore

Anonymisation

Guidance on Anonymisation and Pseudonymisation | Irish DPC

Anonymisation

Opinion 05/2014 on Anonymisation Techniques | WP216

Anonymisation

Records of Processing Activities under Article 30 GDPR | Irish DPC

Records of processing Activities (ROPA)

UK MRC Identifiability, anonymisation and pseudonymisation

Anonymisation

Guide to Data Protection Impact Assessments by PDPC Singapore

Data Protection Impact Assessment (DPIA)

Data Protection Impact Assessments (DPIA) Template by UK ICO

Data Protection Impact Assessment (DPIA)

How to manage DPIAs by Data Protection Network (DPN)

Data Protection Impact Assessment (DPIA)

Data Protection Impact Assessment (DPIAs) by APDCAT

Data Protection Impact Assessment (DPIA)

Guide to Data Protection Impact Assessments (DPIAs) by the Irish DPC

Data Protection Impact Assessment (DPIA)

GDPR Risk Assessment by the AEPD

Data Protection Impact Assessment (DPIA)

WORKING PARTY 29 POSITION PAPER on the derogations from the obligation to maintain records of processing activities pursuant to Article 30(5) GDPR

Records of processing Activities (ROPA)

Guidelines on Automated individual decision-making and Profiling for the purposes of Regulation 2016/679

Automated Decision-making

Data Sharing Code | UK ICO

Data Sharing

Joint Guide to ASEAN MCC and EU SCC

Data Transfers, Standard Contractual Clauses (SCC)

Guidelines on Data Protection Impact Assessment (DPIA) and determining whether processing is “likely to result in a high risk” for the purposes of Regulation 2016/679

Data Protection Impact Assessment (DPIA)

Privacy Impact Assessment (PIA) Knowledge Bases by CNIL

Data Protection Impact Assessment (DPIA)

Privacy Impact Assessment (PIA) Methodology by CNIL

Data Protection Impact Assessment (DPIA)

Privacy Impact Assessment (PIA) Methodology Mindmap by CNIL

Data Protection Impact Assessment (DPIA)

Privacy Impact Assessment – Internet of Things Devices (CNIL)

Data Protection Impact Assessment (DPIA)

Records of processing activities template by the CNIL

Records of processing Activities (ROPA)

Members of the Code of Conduct for Cloud Infrastructure Service Providers

Code of Conduct

Guidelines on Data Protection Officers (‘DPOs’)

Data Protection Officer (DPO)

Guidelines 01/2021 on Examples regarding Personal Data Breach Notification

Data Breaches

Guidelines 1/2019 on Codes of Conduct and Monitoring Bodies under Regulation 2016/679

Code of Conduct

Guidelines 9/2022 on personal data breach notification under GDPR [Official EDPB Guidelines] [pdf]

Data Breaches

Telegram CEO’s Arrest Sparks Debate on Privacy vs. Regulation

Personal Data Collection, Technical and Organisational Measures (TOMs)

The NSW AI Assessment Framework

Controllers and Processors, Data Protection Impact Assessment (DPIA)

AI Possible Risks & Mitigations Optical Character Recognition by EDPB

AI, Controllers and Processors, Data Protection Impact Assessment (DPIA), Specific processing situations

AI Possible Risks & Mitigations Named Entity Recognition by EDPB

AI, Controllers and Processors, Data Protection Impact Assessment (DPIA), Specific processing situations

5310-C Privacy Threshold Assessments and Privacy Impact Assessments by Office of Information Security

Controllers and Processors, Data Protection Impact Assessment (DPIA)

Automated Decision-Making in Online Platforms: Protection Against Discrimination and Manipulation of Behavior

Automated Decision-making, Controllers and Processors

Technical and organisational measures signed by Superhosting.bg

Controllers and Processors, Technical and Organisational Measures (TOMs)

Technical and Organizational Measures by Adobe Cloud Services

Controllers and Processors, Technical and Organisational Measures (TOMs)

Technical Recommendations on the use of APIs by CNIL

Controllers and Processors, Technical and Organisational Measures (TOMs)

AI and Data Protection risk toolkit by the UK ICO

AI, Data Protection Impact Assessment (DPIA)

Building a Cybersecurity and Privacy Learning Program | NIST | Initial Public Draft

Data Breaches, Employment, Risk Management, Technical and Organisational Measures (TOMs)

Bodil Lindqvist [2003] Case C-101/01, 6 November 2003

Automated Decision-making

Salvatore Manni Case C 398/15

Data Retention, Legitimate Interest, Storage limitation

ANAF Case C‑201/14, 1 October 2015

Automated Decision-making, Data Sharing, Data Transfers, Public Administrative Body

Anonymisation: managing data protection risk code of practice | UK ICO

Anonymisation

Spanish AEPD: 10 MISUNDERSTANDINGS RELATED TO ANONYMISATION

Anonymisation

A Guide to UK GDPR Principles | UK ICO

Accountability, Accuracy, Data minimisation, Integrity and confidentiality, Lawfulness of Processing, Principles, Purpose limitation, Storage limitation, Transparency

A Guide to Lawful Basis | UK ICO

Consent, Lawfulness of Processing, Legal Obligation, Legitimate Interest, Performance of Contract, Public Interests, Vital Interests

Risk Management and Impact Assessment (DPIA) by AEPD

Data Protection Impact Assessment (DPIA)

GDPR Data Incidents – The Step-by-Step Playbook for Effective Response

Data Breaches