legal.digital
  • News
  • Legislation
  • Case law
Subscribe

Belgian SA fined a medical laboratory EUR 20k due to a lack of security and a privacy policy

  • Niels Westerlaken

Niels Westerlaken

Aug 19, 2022

The Belgian SA fined a medical laboratory €20,000 for violating Articles 5(1)(f), 12, 13, 14, 24, 25, 32, 35(1), and 35(3) GDPR due to a lack of security and a privacy policy on its website as well as its nonexistent data protection impact assessment.

https://www.gegevensbeschermingsautoriteit.be/publications/beslissing-ten-gronde-nr.-127-2022.pdf

Data Protection - Summer 2022
Featured

Data Protection - Summer 2022

A quarterly update with updates on transfers, many academic articles on algorithms and AI, and supervisory authorities handing out fines.
Oct 31, 2022 66 min read

AEPD creates tool for data controllers to identify relevant authorities to report a breach

Spain’s data protection authority, the Agencia Española de Protección de Datos, created a tool designed to help organizations determine whether to notify a data protection regulator following a breach. The tool, “Brecha Advisory,” is free to use. It aims to help data controllers identify who should be notified, what
Oct 31, 2022

CJEU clarifies GDPR principles of purpose limitation and storage limitation

The purpose limitation principle does not preclude a controller from capturing and storing in a test database established for testing and error correction purposes personal data previously collected and stored in another database. However, such "further processing" of personal data must be compatible with the specific purposes for which the
Oct 30, 2022
legal.digital © 2023
  • License & legal notice
Powered by Ghost