GDPR | 4-year anniversary – Our top picks of past and upcoming judgements of the Court of Justice of the European Union
Tags:DPADPA investigationGDPR fineGDPR principlesLawfulness of processingLegal basisUpdateIn the spotlight A private individual sanctioned by the Romanian DPA for unlawful publishing of personal data on a social media platform
Tags:Accountabilitydata minimizationDPA investigationGDPR fineGDPR principlesstorage limitationUpdateIn the spotlight The Romanian DPA fines controller for breaches of GDPR requirements related to GPS monitoring
Tags:Corrective measuresData breachDPADPA investigationGDPR fineMedical dataSecurity of processingIn the spotlight Two controllers in the medical field fined by the Romanian DPA for failure to ensure the security of processing
Tags:Accountabilitydata minimizationDPADPA investigationGDPR fineGDPR principlesUpdateIn the spotlight The Romanian DPA fines a political party EUR 10,000 for failure to ensure data minimization and accountability principles
Tags:Corrective measuresCyber attackData breachDPADPA investigationGDPR fineSecurity of processingIn the spotlight Political party sanctioned with EUR 4,000 fine and corrective measures following a data breach caused by a phishing attack
Tags:Data breachDPADPA investigationGDPR fineSecurity of processingUpdateIn the spotlight Energy supplier fined EUR 3,000 by the Romanian DPA for data breach
Tags:Corrective measuresData subject's rightsDPADPA investigationGDPR fineRight to objectTransparencyIn the spotlight The Romanian DPA sanctions an online retailer with EUR 2,000 for failure to ensure transparency and the right to object
Tags:Data breachDPADPA investigationGDPR fineSecurity of processingUpdateIn the spotlight Another two fines imposed by the Romanian DPA following data breaches caused by ransomware attacks
Tags:Data breachDPADPA investigationGDPR fineSecurity of processingUpdateIn the spotlight Provider of recruitment services platform fined EUR 5,000 by the Romanian DPA for data breach
Tags:Corrective measuresData breachData subjects' rightDPADPA investigationGDPR fineRight to erasureIn the spotlight The Romanian DPA sanctions a major retailer with 1,000 EUR for failure to ensure the erasure of data