Merchant

€10,000

Non-compliance with general data processing principles

Beslissingsdatum

17 september 2019

Autoriteit

Belgian Data Protection Authority (APD)

BE

Sector

Industry and Commerce

Land

BE

Wet

GDPR

Status

FINAL

Beschrijving

The Belgian data protection authority has imposed a fine of 10,000 euros on a merchant who wanted to use an electronic identity card (eID) to create a customer card. The DPA's investigation revealed that the merchant required access to personal data located on the eID, including the photo and barcode which is linked to the data subject's identification number. In the meantime, the decision of the data protection authority has been annulled by a court: link

Juridische citaten

Art. 5 (1)

Problemen en overtredingen

Non-compliance with general data processing principles
Officieel document bekijken
Terug naar de database met boetes
Vorige boete
Polish National Personal Data Protection Office (U...
Volgende boete
Data Protection Authority of Hamburg (HmbBfDI) - C...

Blijf op de hoogte van privacybescherming

We respecteren je privacy. Eén e-mail per maand, geen spam, afmelden kan altijd.