-
The Norwegian Data Protection Authority has fined Etterforsker1 Gruppen AS NOK 50,000 (EUR 5,000) for performing an unwarranted credit rating on a private individual.
-
Shareholders must be informed when personal data is collected from an equity manager.
-
The Norwegian Data Protection Authority has fined Lillestrøm Municipal Council NOK 300,000 (EUR 30,000) for violation of the General Data Protection Regulation’s confidentiality requirements.
-
The Norwegian Data Protection Authority has decided to fine a business NOK 100,000 (EUR 10,000) for violating the Working Environment Act's provisions concerning e-mail access and the requirements of the General Data Protection Regulation concerning legal basis and disclosure. The business is also ordered to update its procedures.
-
The Norwegian Data Protection Authority has fined the Norwegian Labour Inspection Authority NOK 150,000 (EUR 15,000) for performing an unwarranted credit rating on a private individual. The Labour Inspection Authority is also reprimanded for lack of disclosure.
-
The Norwegian Data Protection Authority has decided to ban the processing of personal data in the browser extension Shinigami Eyes. The basis for this decision is failure to meet the requirement for a legal basis and a lack of information to users.
-
The Norwegian Data Protection Authority has decided to issue Trumf with a fine in the amount of NOK 5 million (EUR 500,000). The basis for this fine is that Trumf members were able to register someone else’s account number on their member profile, thereby accessing the purchasing history of a third party.
-
The Norwegian Data Protection Authority has decided to issue the Norwegian Labour and Welfare Administration (NAV) with a fine in the amount of NOK 5 million (EUR 500,00) for making CVs available on the service arbeidsplassen.no without a legal basis for doing so.
-
In the state budget for 2023 the DPA's regulatory sandbox, which for two years has been financed as a temporary project, is suggested to become a permanent part of the DPA. We've therefore opened our mailbox for applications from those wishing to participate in the fourth round of the sandbox.
-
Thursday November 3rd at 09 it is ready for the Sandbox seminar 2022. The seminar is open to everyone looking for real knowledge about artificial intelligence and privacy.
It will be a digital event with two panels: one on federated learning, and one on artificial intelligence in the health sector.
-
The Norwegian parliament – the Storting – had a data breach in late 2020. In January, the Data Protection Authority gave notice of a NOK 2 million fine for inadequate security. We have now considered the Storting’s comments and decided to maintain the fine.
-
The Norwegian Data Protection Authority has fined the municipality of Østre Toten NOK 4 million. The municipality has also been ordered to implement a suitable control system for information security and personal data protection.
-
The Norwegian Data Protection Authority has decided to fine T. Stene Transport AS NOK 40,000 (EUR 4,000) after unlawfully performing a credit rating of a sole proprietorship. The company is also ordered to establish procedures for when it is appropriate to perform a credit rating.
-
The Norwegian Data Protection Authority has fined Elektro & Automasjon Systemer AS NOK 200,000 for performing a credit rating on a private individual without any legal basis.
-
In December 2021, the Norwegian Data Protection Authority imposed an administrative fine of NOK 65 000 000 – approximately € 6.5 million – against Grindr LLC for not complying with the GDPR rules on consent. Grindr has now lodged an appeal against this decision.