ING Bank N.V. Amsterdam - Bucharest office
€3,000
Insufficient legal basis for data processing
決定日期
2020年12月30日
權限
Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)
RO
部門
Finance, Insurance and Consulting
國家
RO
法律
GDPR狀態
FINAL說明
The Romanian DPA (ANSPDCP) fined ING Bank N.V. Amsterdam - Bucharest office in the amount of EUR 3,000. The bank had contacted the data subject by e-mail for the purpose of updating his data. At that time, however, the data subject had already terminated his account with the bank, so that the contractual relationship had been terminated. As a result, the data controller had unlawfully processed personal data of the former customer without his consent such as the e-mail address and the name and of the data subject.
法律引文
Art. 5 (1)Art. 6 (1)
問題與違規
Insufficient legal basis for data processing