Category

European Union
On 11 January 2023, the Italian data protection authority (“Garante“) issued a decision against Commify Italia Srl for several violations of the GDPR. The decision demonstrates that the lawfulness of...
Read More
On 16 March 2023, the French supervisory authority (“CNIL“) imposed an administrative fine in the total amount of EUR 125,000 against Cityscoot, a company that provides electric scooter rental service....
Read More
On 7 July 2022, the French supervisory authority (CNIL) imposed a EUR 175,000 fine on Ubeeqo International (Ubeeqo), a car rental service provider. Ubeeqo was found to be collecting customers’...
Read More
On 1 June 2022, the Slovenian supervisory authority (Information Commissioner) rendered a decision (no. 0612-23/2019/19) ordering a cloud provider (CP) to enter into joint controllership arrangements with its clients. The...
Read More
On 1 April 2022, the Belgian DPA rendered a decision against an employer for restoring in an indiscriminate manner personal data on a former employee’s work laptop. The facts The...
Read More
In a recent decision, the Spanish Data Protection Authority (Agencia Española de Protección de Datos – “AEPD“) fined Marins Playa, S.A. (“Marins Playa“), a provider of hotel services, with 30,000...
Read More
Arts. 12 and 15 of the EU Data Protection Regulation (EU) 2016/679 (“GDPR“) regulate the right of access (“RoA“). This right consists of three main components: (i) confirmation of whether...
Read More
On 11 February 2022, the Spanish Data Protection Authority (Agencia Española de Protección de Datos) fined Amazon Road Transport Spain, S.L. (“Amazon RT“) EUR 2,000,000, for including criminal record certificates...
Read More
On 26 July 2021, the French Data Protection Authority (“CNIL“) issued a fine of EUR 400,000 against Monsanto, leading company in the field of agricultural biotechnologies. The decision elucidates the...
Read More
The Arnhem-Leeuwarden Court of Appeal, in the Netherlands, recently issued a decision concerning compliance with a legal obligation as legal basis for data processing (Article 6.1(c) of GDPR). The decision...
Read More
1 2 3 4 5

ARCHIVE