Arp Hansen Hotel Group A/S
€147,800
Non-compliance with general data processing principles
Дата прийняття рішення
28 липня 2020 р.
Влада
Danish Data Protection Authority (Datatilsynet)
DK
Сектор
Accomodation and Hospitality
Країна
DK
Право
GDPRСтатус
FINALОпис
During an inspection, the supervisory authority reviewed a number of IT systems to examine whether Arp-Hansen had sufficient procedures in place to ensure that personal data were not kept longer than necessary for the purposes of collection. It was found that one of the reservation systems contained a large amount of personal data that should already have been deleted in accordance with the deletion deadlines set by Arp-Hansen itself.
Юридичні посилання
Art. 5 (1)
Проблеми та порушення
Non-compliance with general data processing principles