Search Privacy Fines
Browse and filter privacy enforcement fines worldwide.
43 fines found
Total: $1.6M
| Date | Company | Fine | Regulation | Authority | Country | Type | Summary |
|---|---|---|---|---|---|---|---|
| 2021-03-03 | KEPIDES | €6K | GDPR | Cypriot Data Protection Commissioner | Cyprus | Failure to implement sufficient measures to ensure information security | --Articles: Art. 32 (4) |
| 2019-03-01 | State Hospital | €5K | GDPR | Cypriot Data Protection Commissioner | Cyprus | Non-compliance with subjects' rights protection safeguards | The data controller could not provide access to personal information to a patien...The data controller could not provide access to personal information to a patient because the dossier could not be identified. The patient complained to the Commissioner about this, and the hospital was fined 5.000 Euros. Articles: Art. 15 GDPR |
| 2022-03-21 | English School Staff Union (ESSA) | €5K | GDPR | Cypriot Data Protection Commissioner | Cyprus | Failure to implement sufficient measures to ensure information security | --Articles: Art. 32 GDPR |
| 2022-01-01 | DW Dynamic Works LIMITED | €5K | GDPR | Cypriot Data Protection Commissioner | Cyprus | Failure to implement sufficient measures to ensure information security | --Articles: Art. 32 GDPR |
| 2022-01-01 | Cypriot Ministry of Defense | €5K | GDPR | Cypriot Data Protection Commissioner | Cyprus | Insufficient data processing agreement | --Articles: Art. 24 GDPR, Art. 32 GDPR |
| 2022-01-01 | Cyprus Judo Federation | €5K | GDPR | Cypriot Data Protection Commissioner | Cyprus | Insufficient fulfilment of data subjects rights | --Articles: Art. 31 GPDR |
| 2019-03-01 | State Hospital | €5K | GDPR | Cypriot Data Protection Commissioner | Cyprus | Non-compliance with subjects' rights protection safeguards | --Articles: Art. 15 GDPR |
| 2022-03-22 | English School Cyprus | €4K | GDPR | Cypriot Data Protection Commissioner | Cyprus | Failure to implement sufficient measures to ensure information security | --Articles: Art. 32 GDPR |
| 2022-01-01 | PRINTAFORM Ltd. | €4K | GDPR | Cypriot Data Protection Commissioner | Cyprus | Failure to implement sufficient measures to ensure information security | --Articles: Art. 28 (3) GDPR, Art. 32 (1) GDPR |
| 2022-01-01 | Universal Life Insurance Public Co Ltd. | €4K | GDPR | Cypriot Data Protection Commissioner | Cyprus | Insufficient data processing agreement | --Articles: Art. 24 (1) GDPR, Art. 28 (1) GDPR |
| 2023-02-03 | Epic Ltd. | €3K | GDPR | Cypriot Data Protection Commissioner | Cyprus | Non-compliance with lawful basis for data processing | --Articles: Art. 6 (1) GDPR, Art. 24 (1), (2) GDPR, Art. 32 (1) GDPR |
| 2019-10-25 | Louis Aviation Ltd | €2K | GDPR | Cypriot Data Protection Commissioner | Cyprus | Non-compliance with lawful basis for data processing | --Articles: Art. 6 GDPR, Art. 9 GDPR |
| 2019-10-25 | Louis Aviation Ltd | €2K | GDPR | Cypriot Data Protection Commissioner | Cyprus | Non-compliance with lawful basis for data processing | The national data protection authority determined that the company used the Brad...The national data protection authority determined that the company used the Bradford factor for profiling and monitoring sick leave and that this constituted unlawful processing of personal data. Articles: Art. 6 GDPR, Art. 9 GDPR |
| 2022-01-01 | Oroklini Muncipal Council | €2K | GDPR | Cypriot Data Protection Commissioner | Cyprus | Non-cooperation with Data Protection Authority | --Articles: Art. 31 GDPR |
| 2022-01-01 | Physician | €2K | GDPR | Cypriot Data Protection Commissioner | Cyprus | Non-cooperation with Data Protection Authority | --Articles: Art. 31 GDPR |
| 2020-01-13 | M.L. Pro.Fit Solutions LTD | €1K | GDPR | Cypriot Data Protection Commissioner | Cyprus | Non-compliance with lawful basis for data processing | The company was fined for sending marketing messages without consent. No measure...The company was fined for sending marketing messages without consent. No measures were taken to permit phone users to block these messages and no measures were provided that would have allowed the contacted individuals to opt-out of receiving these messages. Articles: Art. 6 GDPR |
| 2020-10-19 | Grant Ideas Ltd | €1K | GDPR | Cypriot Data Protection Commissioner | Cyprus | Non-compliance with lawful basis for data processing | --Articles: Art. 5 GDPR, Art. 6 GDPR |
| 2020-01-13 | M.L. Pro.Fit Solutions LTD | €1K | GDPR | Cypriot Data Protection Commissioner | Cyprus | Non-compliance with lawful basis for data processing | --Articles: Art. 6 GDPR |