Unknown
€1,000
Insufficient legal basis for data processing
Datum odločitve
1. julij 2021
Organ
Spanish Data Protection Authority (aepd)
ES
Sektor
Not assigned
Država
CZ
Zakon
GDPRStatus
FINALOpis
The Spanish DPA (AEPD) has imposed a fine of EUR 1,000 on a company. The controller had used the personal data of a third party in order to obtain a microcredit. The DPA states that the controller lacked a legal basis for the processing and thus violated Art. 6 (1) GDPR.
Pravne navedbe
Art. 6 (1)
Vprašanja in kršitve
Insufficient legal basis for data processing