Belgium
Proximus SA
50,000 €
GDPR enforcement action by Belgian Data Protection Authority (APD) on 2020-04-28.
Rank · Sector
#189
of 369 in Media, Telecoms and Broadcasting
Rank · Belgium
#11
of 50
Rank · All fines
#699
of 3,050
Case details
- Authority
- Belgian Data Protection Authority (APD)
- Date
- 2020-04-28
- Controller / Processor
- Proximus SA
- Sector
- Media, Telecoms and Broadcasting
- Quoted Articles
- Art. 31 GDPR, Art. 58 GDPR, Art. 37 GDPR
- Type of violation
- Insufficient involvement of data protection officer
Summary
According to the data protection authority, the company's data protection officer was not sufficiently involved in the processing of personal data breaches and the company did not have a system in place to prevent a conflict of interest of the DPO, who also held numerous other positions within the company (head of compliance and audit department), which led the DPA to the conclusion that the company's DPO was not able to work independently.
Open original source
Links to the regulator's original publication or another source.
Related fines
Belgium
2020-07-14
600,000 €
ETid-344
Google Belgium SA
Media, Telecoms and Broadcasting
Belgium
2022-04-04
200,000 €
ETid-1116
Brussels Airport Zaventem
Transportation and Energy
Belgium
2024-12-17
200,000 €
ETid-2521
Hospital
Health Care
Belgium
2026-05-12
177,000 €
ETid-3172
Technology Company
Employment
Belgium
2024-01-16
174,640 €
ETid-2225
Black Tiger Belgium
Industry and Commerce
Belgium
2026-05-12
120,000 €
ETid-3174
Isabel SA
Finance, Insurance and Consulting