Piraeus Bank
€30,000
Non-compliance with general data processing principles
Päätöspäivä
2. helmikuuta 2023
Viranomainen
Hellenic Data Protection Authority (HDPA)
GR
Ala
Finance, Insurance and Consulting
Maa
GR
Laki
GDPRTila
FINALKuvaus
The Hellenic DPA has imposed a fine of EUR 30,000 on Piraeus Bank. A customer had filed a complaint with the DPA because the bank had disclosed transaction and account balance information from two bank accounts of which they were joint owners to the heirs of the other owner in the course of legal proceedings. The DPA determined, that the disclosure of the joint account information was unlawful. In addition, the bank failed to report the incident to the DPA and the data subject in a timely manner.
Oikeudelliset viittaukset
Art. 5 (1)Art. 33Art. 34
Asiat ja rikkomukset
Non-compliance with general data processing principles