Czech Republic
Legal Person
2,000 €
GDPR enforcement action by Czech Data Protection Auhtority (UOOU) on 2019-10-04.
Rank · Sector
#232
of 270 in Health Care
Rank · Czech Republic
#37
of 73
Rank · All fines
#2,395
of 3,050
Case details
- Authority
- Czech Data Protection Auhtority (UOOU)
- Date
- 2019-10-04
- Controller / Processor
- Legal Person
- Sector
- Health Care
- Quoted Articles
- Art. 5 (1) a) GDPR, Art. 12 (1) GDPR, Art. 30 GDPR
- Type of violation
- Insufficient legal basis for data processing
Summary
The Czech DPA has imposed a fine of EUR 2,000 on a legal person. The accused circumvented the law when, instead of providing social services with proper authorization, it did so without it in the context of providing accommodation and health-care services. Consequently, it lacked sufficient legal basis to process personal data.
Open original source
Links to the regulator's original publication or another source.
Related fines
Czech Republic
2024-04-15
13,900,000 €
ETid-2298
Avast Software s.r.o.
Industry and Commerce
Czech Republic
2023-08-02
178,000 €
ETid-2592
Multiple website operators
Not assigned
Czech Republic
2021-01-04
118,500 €
ETid-513
Unknown
Industry and Commerce
Czech Republic
2021-01-20
26,710 €
ETid-2792
Legal Person
Not assigned
Czech Republic
2020-12-18
26,710 €
ETid-2793
Legal Person
Not assigned
Czech Republic
2020-09-30
20,050 €
ETid-2828
Legal Person
Industry and Commerce