Fine against bank from germany

If a customer terminated the business relationship with the bank, his / her data was blacklisted. If you try to open an account, the data will be compared with this blacklist and if there is a match, you are not able to open the account.

This is an illegal data processing according to GDPR. The company was fined € 50,000. According to its own statements, the company has introduced this practice due to anti-money laundering requirements.

Entscheidungsdatum:
01.01.2019

Land:
Germany

Art des Verstoßes:
Illegal data processing

Betroffene Datensätze:
unknown

Waren sensible Daten betroffen?:
No

verhängte Geldstrafe:
€ 50,000,-

Violation of GDPR Paragraph:

22. Automated individual decision-making, including profiling
6. Lawfulness of processing

Quelle: