Tag Archives: supervisory authority

Is the Dutch GDPR fining matrix setting the tone for the ICO’s future fining policy?

The Dutch Data Protection Authority (DPA) released its GDPR fining policy on 14 March 2019, becoming the first EU Member State supervisory authority to set out a structure for calculating administrative fines for failing to comply with the GDPR. Four categories of fines plus an aggravating category The legal maximum monetary fine that can be … Continue Reading

Article 29 Working Party publishes guidelines on personal data breach notification

On 3 October 2017, the Article 29 Working Party (“WP29”) published draft guidelines on personal data breach notification (“Guidelines”) under the General Data Protection Regulation 2016/279 (“GDPR”). In this blog, we look at some of the key concepts that are considered in the Guidelines regarding the mandatory breach notification and communication requirements of the GDPR. … Continue Reading
LexBlog