Arp Hansen Hotel Group A/S
€147,800
Non-compliance with general data processing principles
Дата принятия решения
28 июля 2020 г.
Авторитет
Danish Data Protection Authority (Datatilsynet)
DK
Сектор
Accomodation and Hospitality
Страна
DK
Закон
GDPRСтатус
FINALОписание
During an inspection, the supervisory authority reviewed a number of IT systems to examine whether Arp-Hansen had sufficient procedures in place to ensure that personal data were not kept longer than necessary for the purposes of collection. It was found that one of the reservation systems contained a large amount of personal data that should already have been deleted in accordance with the deletion deadlines set by Arp-Hansen itself.
Юридические цитаты
Art. 5 (1)
Проблемы и нарушения
Non-compliance with general data processing principles