Piraeus Bank

€210,000

Non-compliance with general data processing principles

Otsuse kuupäev

12. juuni 2023

Ametiasutus

Hellenic Data Protection Authority (HDPA)

GR

Sektor

Finance, Insurance and Consulting

Riik

GR

Seadus

GDPR

Staatus

FINAL

Kirjeldus

The Hellenic DPA has imposed a fine of EUR 210,000 on Piraeus Bank. During its investigation, the DPA found that the bank had processed personal data of customers in violation of the principle of lawfulness. In addition, the DPA found that the bank had processed personal data without taking appropriate and effective technical and organizational measures to process only the data necessary for the specific purpose. Finally, the DPA found that the bank had failed to properly comply with a data subject's request for access to their personal data.

Õiguslikud viited

Art. 5 (1)Art. 6Art. 15 (1)Art. 25 (1)

Probleemid ja rikkumised

Non-compliance with general data processing principles
Vaata ametlikku dokumenti
Tagasi trahvide andmebaasi juurde
Eelmine trahv
Data Protection Authority of Sweden - Spotify...
Järgmine trahv
Data Protection Authority of Hamburg (HmbBfDI) - C...

Privaatsuse jõustamise kohta ajakohastatud teave

Me austame teie privaatsust. Üks e-kiri kuus, ei ole rämpsposti, loobuda tellimusest igal ajal.