DAVISER SERVICIOS, S.L.
€20,000
Non-compliance with general data processing principles
Datum rozhodnutí
30. listopadu 2021
Úřad
Spanish Data Protection Authority (aepd)
ES
Sektor
Transportation and Energy
Země
ES
Právo
GDPRStav
FINALPopis
The Spanish DPA (AEPD) has imposed a fine of EUR 20,000 on DAVISER SERVICIOS, S.L.. The company had been processing biometric data (fingerprints) of employees for access to certain rooms, although less intrusive means (such as key cards) could have been used to protect the privacy of the data subjects. The AEPD found that the controller had violated the principle of data minimization.
Právní citace
Art. 5 (1)
Problémy a porušení
Non-compliance with general data processing principles