Greece
Ministry of Interior (Greece)
400,000 €
GDPR enforcement action by Hellenic Data Protection Authority (HDPA) on 2024-05-27.
Rank · Sector
#19
of 356 in Public Sector and Education
Rank · Greece
#6
of 93
Rank · All fines
#271
of 3,039
Case details
- Authority
- Hellenic Data Protection Authority (HDPA)
- Date
- 2024-05-27
- Controller / Processor
- Ministry of Interior (Greece)
- Sector
- Public Sector and Education
- Quoted Articles
- Art. 5 (1) f) GDPR, 32 GDPR, 25 (1) GDPR, 33 (3), (4), (5) GDPR
- Type of violation
- Insufficient technical and organisational measures to ensure information security
Summary
The Hellenic DPA imposed a fine of EUR 400,000 on the Ministry of Interior for leaking email addresses from the voter registry of Greek expatriates. These personal data, which were intended for electoral purposes, were subsequently misused by a Member of the European Parliament (MEP) to send unsolicited political communications.
Open original source
Links to the regulator's original publication or another source.
Related fines
Greece
2022-07-13
20,000,000 €
ETid-1268
Clearview Al Inc.
Industry and Commerce
Greece
2022-01-27
6,000,000 €
ETid-1024
Cosmote Mobile Telecommunications S.A.
Media, Telecoms and Broadcasting
Greece
2022-01-27
3,200,000 €
ETid-1025
OTE Group
Media, Telecoms and Broadcasting
Greece
2024-02-28
2,995,140 €
ETid-2284
Hellenic Post (ΕΛΛΗΝΙΚΑ ΤΑΧΥΔΡΟΜΕΙΑ ΑΝΩΝΥΜΗ ΕΤΑΙΡΕΙΑ)
Transportation and Energy
Greece
2025-06-25
550,000 €
ETid-2878
Vodafone – PANAFON A.E.E.T.
Media, Telecoms and Broadcasting
Greece
2023-06-12
210,000 €
ETid-1921
Piraeus Bank
Finance, Insurance and Consulting