DAVISER SERVICIOS, S.L.
€20,000
Non-compliance with general data processing principles
Dátum rozhodnutia
30. novembra 2021
Úrad
Spanish Data Protection Authority (aepd)
ES
Sektor
Transportation and Energy
Krajina
ES
Právo
GDPRStav
FINALPopis
The Spanish DPA (AEPD) has imposed a fine of EUR 20,000 on DAVISER SERVICIOS, S.L.. The company had been processing biometric data (fingerprints) of employees for access to certain rooms, although less intrusive means (such as key cards) could have been used to protect the privacy of the data subjects. The AEPD found that the controller had violated the principle of data minimization.
Právne citácie
Art. 5 (1)
Problémy a porušenia
Non-compliance with general data processing principles