Piraeus Bank
€30,000
Non-compliance with general data processing principles
Otsuse kuupäev
2. veebruar 2023
Ametiasutus
Hellenic Data Protection Authority (HDPA)
GR
Sektor
Finance, Insurance and Consulting
Riik
GR
Seadus
GDPRStaatus
FINALKirjeldus
The Hellenic DPA has imposed a fine of EUR 30,000 on Piraeus Bank. A customer had filed a complaint with the DPA because the bank had disclosed transaction and account balance information from two bank accounts of which they were joint owners to the heirs of the other owner in the course of legal proceedings. The DPA determined, that the disclosure of the joint account information was unlawful. In addition, the bank failed to report the incident to the DPA and the data subject in a timely manner.
Õiguslikud viited
Art. 5 (1)Art. 33Art. 34
Probleemid ja rikkumised
Non-compliance with general data processing principles