Arp Hansen Hotel Group A/S

€147,800

Non-compliance with general data processing principles

Decision Date

July 28, 2020

Authority

Danish Data Protection Authority (Datatilsynet)

DK

Sector

Accomodation and Hospitality

Country

DK

Law

GDPR

Status

FINAL

Description

During an inspection, the supervisory authority reviewed a number of IT systems to examine whether Arp-Hansen had sufficient procedures in place to ensure that personal data were not kept longer than necessary for the purposes of collection. It was found that one of the reservation systems contained a large amount of personal data that should already have been deleted in accordance with the deletion deadlines set by Arp-Hansen itself.

Legal Citations

Art. 5 (1)

Issues & Violations

Non-compliance with general data processing principles
View Official Document
Back to Fines Database
Previous Fine
Romanian National Supervisory Authority for Person...
Next Fine
Data Protection Authority of Hamburg (HmbBfDI) - C...

Stay Updated on Privacy Enforcement

We respect your privacy. One email per month, no spam, unsubscribe anytime.