- Query in any language with multilingual search
- Access EUR-Lex and EU Commission case law
- See relevant paragraphs highlighted instantly
Similar Documents
Explore similar documents to your case.We Found Similar Cases for You
Case C-169/23, Másdi: Judgment of the Court (Third Chamber) of 28 November 2024 (request for a preliminary ruling from the Kúria – Hungary) – Nemzeti Adatvédelmi és Információszabadság Hatóság v UC (Reference for a preliminary ruling – Protection of natural persons with regard to the processing of personal data and the free movement of such data – Regulation (EU) 2016/679 – Data processed when drawing up a COVID-19 certificate – Data not collected from the data subject – Information to be provided – Exception to the obligation to provide information – Article 14(5)(c) – Data generated by the controller in the context of its own processes – Right to complain – Competence of the supervisory authority – Article 77(1) – Appropriate measures to protect the data subject’s legitimate interests provided for by the Member State law to which the controller is subject – Measures relating to the security of data processing – Article 32)
ECLI:EU:UNKNOWN:62023CA0169
62023CA0169
With us you find everything. Try it now!
I imagine what I want to write in my case, I write it in the search engine and I get exactly what I wanted. Thank you!
Valentina R., lawyer
Official Journal of the European Union
C series
—
C/2025/366
27.1.2025
(Case C-169/23,
Másdi)
(Reference for a preliminary ruling - Protection of natural persons with regard to the processing of personal data and the free movement of such data - Regulation (EU) 2016/679 - Data processed when drawing up a COVID-19 certificate - Data not collected from the data subject - Information to be provided - Exception to the obligation to provide information - Article 14(5)(c) - Data generated by the controller in the context of its own processes - Right to complain - Competence of the supervisory authority - Article 77(1) - Appropriate measures to protect the data subject’s legitimate interests provided for by the Member State law to which the controller is subject - Measures relating to the security of data processing - Article 32)
(C/2025/366)
Language of the case: Hungarian
Referring court
Parties to the main proceedings
Applicant: Nemzeti Adatvédelmi és Információszabadság Hatóság
Defendant: UC
Operative part of the judgment
1.Article 14(5)(c) of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation)
must be interpreted as meaning that the exception to the controller’s obligation to provide information to the data subject, laid down in that provision, concerns all personal data, without distinction, that have not been collected by the controller directly from the data subject, whether those data have been obtained by the controller from a person other than the data subject or whether they have been generated by the controller itself, in the performance of its tasks.
2.Article 14(5)(c) and Article 77(1) of Regulation 2016/679
must be interpreted as meaning that, in a complaint procedure, the supervisory authority is competent to verify whether the Member State law to which the controller is subject provides appropriate measures to protect the data subject’s legitimate interests, for the purposes of the application of the exception laid down in Article 14(5)(c). That verification does not however cover the appropriateness of the measures which the controller is required to implement, under Article 32 of that regulation, in order to guarantee the security of processing of personal data.
* * *
ELI: http://data.europa.eu/eli/C/2025/366/oj
ISSN 1977-091X (electronic edition)
—