Merchant

€10,000

Non-compliance with general data processing principles

Dato for beslutning

17. september 2019

Myndighet

Belgian Data Protection Authority (APD)

BE

Sektor

Industry and Commerce

Land

BE

Lov og rett

GDPR

Status

FINAL

Beskrivelse

The Belgian data protection authority has imposed a fine of 10,000 euros on a merchant who wanted to use an electronic identity card (eID) to create a customer card. The DPA's investigation revealed that the merchant required access to personal data located on the eID, including the photo and barcode which is linked to the data subject's identification number. In the meantime, the decision of the data protection authority has been annulled by a court: link

Juridiske henvisninger

Art. 5 (1)

Problemer og overtredelser

Non-compliance with general data processing principles
Se offisielt dokument
Tilbake til bøtedatabasen
Tidligere Fine
Polish National Personal Data Protection Office (U...
Neste bot
Data Protection Authority of Hamburg (HmbBfDI) - C...

Hold deg oppdatert om håndheving av personvern

Vi respekterer personvernet ditt. Én e-post per måned, ingen spam, avmelding når som helst.