Greece
Piraeus Bank
30,000 €
GDPR enforcement action by Hellenic Data Protection Authority (HDPA) on 2023-02-02.
Rank · Sector
#144
of 322 in Finance, Insurance and Consulting
Rank · Greece
#28
of 93
Rank · All fines
#900
of 3,042
Case details
- Authority
- Hellenic Data Protection Authority (HDPA)
- Date
- 2023-02-02
- Controller / Processor
- Piraeus Bank
- Sector
- Finance, Insurance and Consulting
- Quoted Articles
- Art. 5 (1) a), f) GDPR, Art. 33 GDPR, Art. 34 GDPR
- Type of violation
- Non-compliance with general data processing principles
Summary
The Hellenic DPA has imposed a fine of EUR 30,000 on Piraeus Bank. A customer had filed a complaint with the DPA because the bank had disclosed transaction and account balance information from two bank accounts of which they were joint owners to the heirs of the other owner in the course of legal proceedings. The DPA determined, that the disclosure of the joint account information was unlawful. In addition, the bank failed to report the incident to the DPA and the data subject in a timely manner.
Open original source
Links to the regulator's original publication or another source.
Related fines
Greece
2022-07-13
20,000,000 €
ETid-1268
Clearview Al Inc.
Industry and Commerce
Greece
2022-01-27
6,000,000 €
ETid-1024
Cosmote Mobile Telecommunications S.A.
Media, Telecoms and Broadcasting
Greece
2022-01-27
3,200,000 €
ETid-1025
OTE Group
Media, Telecoms and Broadcasting
Greece
2024-02-28
2,995,140 €
ETid-2284
Hellenic Post (ΕΛΛΗΝΙΚΑ ΤΑΧΥΔΡΟΜΕΙΑ ΑΝΩΝΥΜΗ ΕΤΑΙΡΕΙΑ)
Transportation and Energy
Greece
2025-06-25
550,000 €
ETid-2878
Vodafone – PANAFON A.E.E.T.
Media, Telecoms and Broadcasting
Greece
2024-05-27
400,000 €
ETid-2556
Ministry of Interior (Greece)
Public Sector and Education