Tag Archive for: 2019

DSGVO-Verstoß - 12 Mio Euro Bußgeld - Datenschutz - DSGVO - Daten - Personenbezogene Daten - DSGVO-konform - DSGVO-Bußgeld

GDPR violation – 1.2 million euros fine!

Data errors should cost the AOK Baden-Württemberg a fine of 1.2 million euros.

Read more

GDPR fine calculator – fine calculation for GDPR violations

The data protection conference has decided on a concept for the assessment of the GDPR fine in proceedings against companies, which specifies the abstract catalog of criteria from Art. 83 GDPR. The aim is to obtain a transparent and case-by-case form of fine assessment. The concept is intended to serve as a national guideline for the calculation of fines until the European Data Protection Committee issues Union-wide harmonized guidelines.

The concept has been around since September 2019, but for many companies the question still arises as to how a possible fine is calculated. We explain the calculation of the GDPR fine in detail in the following blog article.

Read more

Gmail DSGVO-konform Bilde

Gmail now order processing – and how you can use Gmail GDPR-compliant

The Higher Administrative Court of Münster ruled on February 5th, 2020 that Gmail is not a telecommunications service. Gmail can therefore be seen as classic order processing and is therefore subject to the special requirements of the GDPR. In the following blog article, we’ll tell you what you have to do to use Gmail in a GDPR-compliant manner.
Read more

Despite Brexit: data transmission to the UK remains permissible

Even after Brexit, data transfer to the United Kingdom will be possible without additional measures. You can find out more about this below. Read more

Joint responsibility for the integration of third-party content on the website

The European Court of Justice (ECJ) pronounced its judgment on July 29, 2019 in the case C-40/17 (Fashion ID). After the decision of the ECJ on the joint responsibility of the service provider Facebook and the fan page operator, the ECJ developed its case law on joint responsibility in the “Fashion ID” case; this time with far-reaching consequences for almost every website operator. The ECJ ruled that the concept of responsibility should be interpreted broadly and that both the integrator and the third-party provider could be responsible for the integration of third-party content. There is then a joint responsibility according to Art. 26 GDPR, which is limited to the extent that the person responsible actually decides on the purposes and means of data processing.

Read more

14.5 million EUR GDPR fine imposed on real estate company

The reason for the GDPR fine of 14.5 million euros is data from tenants in an archive system, which could not be deleted. The grievances were discovered in 2017. A review in March 2019 showed that hardly anything had changed in the state. The Berlin data protection authority has therefore imposed a fine of millions on the real estate company “Deutsche Wohnen”. The fine could have been even higher due to the company’s turnover.

Read more

Data protection and money laundering law: inspection obligations regarding identity cards

A large amount of personal data can be found on an identity card. In many industries, particularly with regard to the Money Laundering Act, the question arises as to which personal data may be noted or copied and to what extent, or whether the ID card may even be scanned. In the following we give you a brief overview.

Read more

Calculation basis for GDPR fine published

“A data protection breach can become an expensive matter for companies in the future.”

We draw this conclusion clearly from the published concept of the German supervisory authorities, which provides information on how they intend to measure the GDPR fine for data protection violations in the future.

Read more

Data protection day in Cologne shows: there is still uncertainty when reporting data breaches

The GDPR meets practice. At the data protection day in Cologne on September 24th, 2019, experts discussed concrete implementation experiences with the new regulations. A surprising amount is still open. The point of contention is, in particular, the obligation to report data breaches.
Read more

Employee data protection in the event of criminal offenses

If an employee is suspected of committing a crime, this presents a company with major challenges. Important points must also be observed in internal investigations with regard to employee data protection.
Read more