Debt collector

€1,560

Non-compliance with general data processing principles

Fecha de la decisión

20 de febrero de 2019

Autoridad

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)

HU

Sector

Finance, Insurance and Consulting

País

HU

Ley

GDPR

Estado

FINAL

Descripción

A data subject requested information about and erasure of the data processed, which the debt collector refused stating that it could not identify the subject. For identification purposes he requested place of birth, mother’s maiden name and further details from the data subject. After the controller succeeded to identify the data subjects he refused to comply with the deletion request, arguing he is legally obliged to retain backup copies according to the Accountancy Act and internal policies. Since he did not properly inform about these policies, the NAIH held the controller breached the principle of transparency. The fine constitutes 0.0025% of the annual profit of the controller.

Citas legales

Art. 5 (1)Art. 5 (1)

Problemas e infracciones

Non-compliance with general data processing principles
Ver documento oficial
Volver a la base de datos de multas
Multa anterior
Data Protection Commissioner of Malta - Lands Auth...
Siguiente multa
Data Protection Authority of Hamburg (HmbBfDI) - C...

Manténgase al día sobre la aplicación de las normas de protección de la intimidad

Respetamos su intimidad. Un correo electrónico al mes, sin spam, darse de baja en cualquier momento.