Hungary
Aldi
253,000 €
GDPR enforcement action by Hungarian National Authority for Data Protection and the Freedom of Information (NAIH) on 2023-04-12.
Rank · Sector
#57
of 595 in Industry and Commerce
Rank · Hungary
#3
of 73
Rank · All fines
#314
of 3,042
Case details
- Authority
- Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)
- Date
- 2023-04-12
- Controller / Processor
- Aldi
- Sector
- Industry and Commerce
- Quoted Articles
- Unknown
- Type of violation
- Non-compliance with general data processing principles
Summary
The Hungarian DPA imposed a fine of EUR 253,000 on the supermarket chain Aldi. Aldi had entered and stored the date of birth of many customers in the checkout system when purchasing alcoholic beverages. This procedure was introduced to make the cashiers' work easier, as the software could quickly calculate whether the person was over 18 or not, but was considered excessive by the DPA. Furthermore, ALDI did not answered any questions about the legal basis for this processing.
Open original source
Links to the regulator's original publication or another source.
Related fines
Hungary
2022-02-08
634,000 €
ETid-1244
Budapest Bank Zrt.
Finance, Insurance and Consulting
Hungary
2020-06-12
288,000 €
ETid-313
Digi Távközlési Szolgáltató Kft. ("Digi") (electronic communication service provider)
Media, Telecoms and Broadcasting
Hungary
2023-06-22
205,000 €
ETid-2039
Digi Telecommunications and Services Ltd.
Media, Telecoms and Broadcasting
Hungary
2022-08-11
197,000 €
ETid-1493
AMPLIFON Hungary Trade and Service Provider LLC
Industry and Commerce
Hungary
2020-12-16
97,150 €
ETid-568
Unknown
Finance, Insurance and Consulting
Hungary
2019-05-23
92,146 €
ETid-61
Organizer of SZIGET festival and VOLT festival
Media, Telecoms and Broadcasting