The sanctions procedure
Following investigations, complaints or in case of breaches of the GDPR or of the Data Protection Act, the CNIL restricted committee may issue sanctions to controllers or processors.
The steps of the procedure of sanction
A procedure of sanction may be issued against an organization in case of infringement to the GDPR or French Data Protection Act:
following a complaint or a report of violation to the CNIL ;
following a…
The powers of the restricted committee
The different measures set out
The following corrective powers may be imposed by the restricted committee, if breaches of the GDPR or the French Data Protection Act.
a reprimand;
an order to bring the processing into compliance with the…
The cooperation with the other European supervisory authorities
How to identify the lead authorities for cross-border’s cases?
If during an investigation or the examination of a complaint, the personal data processing is a cross-border one, a European cooperation is initiated.
A processing is considered as…
The sanctions issued by the CNIL
The sanctions issued by the CNIL’s restricted committee since the entering into force of the GDPR.
Les articles associés les plus consultés
In certain cases, it is necessary to cooperate with the other European authorities, within a…
22 December 2020
