GDPR fines

A private individual was fined by the data protection commissioner for installing a surveillance camera that captured construction activities on his own property, neighboring properties and public traffic areas. This surveillance also included employees of the construction company, neighbors and passers-by.

An entrepreneur was fined by the data protection commissioner for publishing personal data of his employees on the Internet.

Between July 1, 2019 and June 1, 2020, the company made a total of 1,752,149 unsolicited calls for marketing purposes, an average of more than 3 calls per minute. These calls were made to individuals who had previously registered in the TPS registry. The calls mistakenly led victims to believe that the warranty on their… […]

Employees of a state Corona protective compliance monitoring team purchased protective workwear at a retail store. One of the employees photographed the team’s recordings of the surveillance equipment and shared the photos with an acquaintance. Later, the photos were also published on social media.

A physician was fined by the data protection commissioner of Saxony for violating her duty to provide information in a timely manner. By her conduct, the physician violated her duty to provide information.

The outdoor pool operating company received a fine of five digits from the Brandenburg data protection authority. The data controller processed a greater amount of visitor data in connection with the Covid pandemic than is legally required for contact tracing purposes.

After the father dialed the U.K. medical advice number, 111, a former call center employee unlawfully accessed the medical records of a child and his family. During the course of an internal investigation, the defendant presented screenshots of the patient’s records and threatened the father several times with charges of neglect. As a consequence for… […]

Several people who have been involved in accidents have complained about receiving unwanted contact from companies involved in claims handling after their accidents. During the investigation, it turned out that a former employee of the Royal Automobile Club had saved the data of 272 traffic accidents on his mobile devices. He was the only one… […]

The UK’s Data Protection Authority (ICO) has launched an investigation into Join The Triboo Limited after it sent unsolicited spam emails to 437,324 people. In these investigations, the DPA found that the company, between August 2019 and August 2020, had sent 107 million spam emails, which means that each affected person had received 244 emails…. […]