Unknown
€1,000
Insufficient legal basis for data processing
Dátum rozhodnutia
1. júla 2021
Úrad
Spanish Data Protection Authority (aepd)
ES
Sektor
Not assigned
Krajina
CZ
Právo
GDPRStav
FINALPopis
The Spanish DPA (AEPD) has imposed a fine of EUR 1,000 on a company. The controller had used the personal data of a third party in order to obtain a microcredit. The DPA states that the controller lacked a legal basis for the processing and thus violated Art. 6 (1) GDPR.
Právne citácie
Art. 6 (1)
Problémy a porušenia
Insufficient legal basis for data processing