Piraeus Bank

€210,000

Non-compliance with general data processing principles

Fecha de la decisión

12 de junio de 2023

Autoridad

Hellenic Data Protection Authority (HDPA)

GR

Sector

Finance, Insurance and Consulting

País

GR

Ley

GDPR

Estado

FINAL

Descripción

The Hellenic DPA has imposed a fine of EUR 210,000 on Piraeus Bank. During its investigation, the DPA found that the bank had processed personal data of customers in violation of the principle of lawfulness. In addition, the DPA found that the bank had processed personal data without taking appropriate and effective technical and organizational measures to process only the data necessary for the specific purpose. Finally, the DPA found that the bank had failed to properly comply with a data subject's request for access to their personal data.

Citas legales

Art. 5 (1)Art. 6Art. 15 (1)Art. 25 (1)

Problemas e infracciones

Non-compliance with general data processing principles
Ver documento oficial
Volver a la base de datos de multas
Multa anterior
Data Protection Authority of Sweden - Spotify...
Siguiente multa
Data Protection Authority of Hamburg (HmbBfDI) - C...

Manténgase al día sobre la aplicación de las normas de protección de la intimidad

Respetamos su intimidad. Un correo electrónico al mes, sin spam, darse de baja en cualquier momento.