Czech Republic
UniCredit Bank Czech Republic and Slovakia, a.s.
3,140 €
GDPR enforcement action by Czech Data Protection Auhtority (UOOU) on Unknown.
Rank · Sector
#249
of 322 in Finance, Insurance and Consulting
Rank · Czech Republic
#28
of 73
Rank · All fines
#1,984
of 3,042
Case details
- Authority
- Czech Data Protection Auhtority (UOOU)
- Date
- Unknown
- Controller / Processor
- UniCredit Bank Czech Republic and Slovakia, a.s.
- Sector
- Finance, Insurance and Consulting
- Quoted Articles
- Art. 6 GDPR
- Type of violation
- Insufficient legal basis for data processing
Summary
The bank established a personal bank account for a data subject without his consent or knowledge. The bank supposedly had his personal data available because the subject had disposed of his employer’s company account. The bank was not able to provide The Office for Personal Data Protection with the necessary documentation to prove entering into contract with the data subject.
Open original source
Links to the regulator's original publication or another source.
Related fines
Czech Republic
2024-04-15
13,900,000 €
ETid-2298
Avast Software s.r.o.
Industry and Commerce
Czech Republic
2023-08-02
178,000 €
ETid-2592
Multiple website operators
Not assigned
Czech Republic
2021-01-04
118,500 €
ETid-513
Unknown
Industry and Commerce
Czech Republic
2021-01-20
26,710 €
ETid-2792
Legal Person
Not assigned
Czech Republic
2020-12-18
26,710 €
ETid-2793
Legal Person
Not assigned
Czech Republic
2020-09-30
20,050 €
ETid-2828
Legal Person
Industry and Commerce