Restaurant

€170

Non-compliance with general data processing principles

Tanggal Keputusan

1 Januari 2021

Wewenang

Data Protection Authority of Hessen

DE

Sektor

Accomodation and Hospitality

Negara

DE

Hukum

GDPR

Status

FINAL

Deskripsi

In order to identify a guest who had not paid, several visitors were contacted by employees of a restaurant. For this purpose, the telephone numbers provided by the guests as part of the Covid contact tracing tracing were used. Since the guests had provided their data solely for infection control purposes, the DPA considered the contacting for the purpose of identifying the guest to be a violation of the principle of purpose limitation (Art. 5 (1) b) GDPR).

Kutipan Hukum

Art. 5 (1)

Masalah & Pelanggaran

Non-compliance with general data processing principles
Lihat Dokumen Resmi
Kembali ke Basis Data Denda
Sebelumnya Denda
Data Protection Authority of Hessen - Police offic...
Berikutnya Baik
Data Protection Authority of Hamburg (HmbBfDI) - C...

Tetap Terupdate tentang Penegakan Privasi

Kami menghormati privasi Anda. Satu email per bulan, tidak ada spam, berhenti berlangganan kapan saja.