Unknown
€1,000
Insufficient legal basis for data processing
Datum för beslut
1 juli 2021
Myndighet
Spanish Data Protection Authority (aepd)
ES
Sektor
Not assigned
Land
CZ
Lag
GDPRStatus
FINALBeskrivning
The Spanish DPA (AEPD) has imposed a fine of EUR 1,000 on a company. The controller had used the personal data of a third party in order to obtain a microcredit. The DPA states that the controller lacked a legal basis for the processing and thus violated Art. 6 (1) GDPR.
Rättsliga hänvisningar
Art. 6 (1)
Frågor och överträdelser
Insufficient legal basis for data processing