Loading

Tag: Data Processing

Tag: Data Processing

A Polish catering company was fined €54,600 for a data breach after an employee lost a flash drive with sensitive data.

A Polish catering company was fined €54,600 for failing to protect personal data after an employee lost a flash drive containing sensitive information, revealing vulnerabilities in the company’s data security. The Polish Data Protection Authority (UODO) recently fined Res-Gastro M. Gaweł Sp. k., a catering company in Kolbuszowa, Poland, €54,600 for failing to implement adequate

Legitimate interest as a legal basis: Guidance from the EDPB

Controllers must ensure necessary, proportionate, processing which respects the rights of data subjects, ensuring GDPR compliance.   When processing personal data under the General Data Protection Regulation (GDPR), controllers must ensure that their actions are lawful. Specifically, if relying on Article 6(1)(f) of the GDPR, the processing must be based on a legitimate interest. This

CNIL fined Cegedim Santé €800,000 for unlawful processing of sensitive health data

CNIL imposed a €800,000 fine on Cegedim Santé for the unauthorized and unlawful processing of sensitive health data.   In 2021, Cegedim Santé, a company specializing in management software for general practitioners and health centers, came under scrutiny from the French data protection authority, CNIL. The company provides software to around 25,000 medical practices and

EU Supervisory Authorities have a right to order the erasure of unlawfully processed data without a request from the data subject

The CJEU has ruled that EU Supervisory Authorities have a right to order the erasure of unlawfully processed data even without a prior request from the data subject.   The recent ruling by the Court of Justice of the European Union (CJEU) has significant implications for the processing of personal data by organisations within the

ICO’s Privacy Considerations for COVID-19 related Data Processing.

ICO’s privacy considerations for COVID-19 related data processing  and Google-Apple joint contact tracing technology outlined by the Information Commissioner, Elizabeth Denham.    The ICO’s privacy considerations for COVID-19 were recently mapped out in a recent blog by the Information Commissioner, Elizabeth Denham, some weeks after their original statement on Coronavirus was released. While the ICO