Hungary
Aldi
253,000 €
GDPR enforcement action by Hungarian National Authority for Data Protection and the Freedom of Information (NAIH) on 2023-04-12.
Rank · Sector
#59
of 597 in Industry and Commerce
Rank · Hungary
#3
of 75
Rank · All fines
#318
of 3,051
Case details
- Authority
- Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)
- Date
- 2023-04-12
- Controller / Processor
- Aldi
- Sector
- Industry and Commerce
- Quoted Articles
- Unknown
- Type of violation
- Non-compliance with general data processing principles
Summary
The Hungarian DPA imposed a fine of EUR 253,000 on the supermarket chain Aldi. Aldi had entered and stored the date of birth of many customers in the checkout system when purchasing alcoholic beverages. This procedure was introduced to make the cashiers' work easier, as the software could quickly calculate whether the person was over 18 or not, but was considered excessive by the DPA. Furthermore, ALDI did not answered any questions about the legal basis for this processing.
Open original source
Links to the regulator's original publication or another source.
Related fines
Hungary
2022-02-08
634,000 €
ETid-1244
Budapest Bank Zrt.
Finance, Insurance and Consulting
Hungary
2020-06-12
288,000 €
ETid-313
Digi Távközlési Szolgáltató Kft. ("Digi") (electronic communication service provider)
Media, Telecoms and Broadcasting
Hungary
2023-06-22
205,000 €
ETid-2039
Digi Telecommunications and Services Ltd.
Media, Telecoms and Broadcasting
Hungary
2022-08-11
197,000 €
ETid-1493
AMPLIFON Hungary Trade and Service Provider LLC
Industry and Commerce
Hungary
2026-05-26
140,500 €
ETid-3187
Mediaworks Hungary Zrt.
Media, Telecoms and Broadcasting
Hungary
2020-12-16
97,150 €
ETid-568
Unknown
Finance, Insurance and Consulting