NATIONAL BANK OF GREECE S.A.

€20,000

Insufficient fulfilment of information obligations

Datum odločitve

3. oktober 2022

Organ

Hellenic Data Protection Authority (HDPA)

GR

Sektor

Finance, Insurance and Consulting

Država

GR

Zakon

GDPR

Status

FINAL

Opis

The Hellenic DPA has imposed a fine of EUR 20,000 on NATIONAL BANK OF GREECE S.A.. In the context of the use of certain debit/credit cards, information of the last 10 transactions were stored on the chip of the card without the customers' explicit consent. This information could be read out later. The DPA found that the bank had failed to inform affected customers about this storage of transaction information and therefore violated Art. 13 GDPR.

Pravne navedbe

Art. 13

Vprašanja in kršitve

Insufficient fulfilment of information obligations
Oglejte si uradni dokument
Nazaj v zbirko podatkov o globah
Prejšnja globa
Hellenic Data Protection Authority (HDPA) - PIRAEU...
Naslednja Drobna
Data Protection Authority of Hamburg (HmbBfDI) - C...

Spremljajte novice o uveljavljanju zasebnosti

Spoštujemo vašo zasebnost. Eno e-poštno sporočilo na mesec, brez neželene pošte, odjava kadar koli.