Company
€492,000
Non-compliance with general data processing principles
Ημερομηνία απόφασης
30 Σεπτεμβρίου 2025
Αρχή
Data Protection Authority of Hamburg (HmbBfDI)
DE
Τομέας
Industry and Commerce
Χώρα
HU
Νόμος
GDPRΚατάσταση
FINALΠεριγραφή
The DPA of Hamburg has imposed a fine of EUR 492,000 on a company in the finance sector. The controller used automated systems to decide whether to approve a credit application, with no human input. This system incorrectly declined applications from applicants with a good credit score. When asked for the reasons for the negative decision, the controller also failed to respond adequately to these information requests.
Θέματα & Παραβάσεις
Non-compliance with general data processing principles