Search
Close this search box.
AI-based solution designed to automate personal data discovery and classification
Discover personal data across multiple systems in the cloud or on-premise
Harbor cooperation between DPO, Legal Services, IT and Marketing
Turn data subject request into an automated workflow with a clear insight into data every step of the way
Collaborate with stakeholders and manage DPIA and LIA in real-time with Assessment Automation
Guide your partners trough vendor management process workflow
Identifying the risk from the point of view of Data Subject
Quickly respond, mitigate damage and maintain compliance
Consolidate your data and prioritize your relationship with customers
Privacy portal allows customers to communicate their requests and preferences at any time
Introducing end-to end automation of personal data removal

Latest Blog posts

Learn the terms

General Data Protection Regulation

Here you can find the official content of the Regulation (EU) 2016/679 (General Data Protection Regulation) in the current version. All Articles of the GDPR are linked with suitable recitals.

Latest papers

€18 million GDPR Fine for Austrian National Postal Service

GDPR fine for Austrian post office

On 23 October 2019, the Austrian Data Protection AuthorityDatenschutzbehörde (DSB), issued an €18 million GDPR fine (plus 1.8 million investigation costs) to the Austrian national postal service.

For a postal service to receive a fine of such magnitude, you are probably asking what could have happened.

The story started to unravel earlier in 2019 when the public was informed that 2.2 million data sets were used to determine or outline the political affinity of Austrian citizens.

The Austrian Post used collected personal data to offer marketing services for advertising to various political parties. Prompted by the numerous complaints and data subject requests to the Post, the Supervisory Authority launched an investigation.

Interestingly enough, the DPA encountered more GDPR violations while conducting the investigation.

Apparently, the Austrian Post was processing data related to the frequency of the packages that were delivered to a certain address and how frequently do individuals move to a new address without any legal basis for it.

The amount of the GDPR fine implies the seriousness of the violation and remains, to this day, one of the top GDPR fines issued so far.

Update:

On 2 December 2020, the Federal Administrative Court overturned an €18 million fine due to violation of its administrative proceeding of the Federal Act on the Protection of Individuals With Regard to the Processing of Personal Data.

In addition, the decision finds that the DSB did not provide the name of the natural person to which the violation of the GDPR was to be attributed, meaning the DSB did not identify the individual who carried out the data processing activities that violated the GDPR.

Request a Data Privacy Manager demo

Let us navigate you through the Data Privacy Manager solution and showcase functionalities that will help you overcome your compliance challenges.

Scroll to Top