Czech Republic
Self Employed Person
200 €
GDPR enforcement action by Czech Data Protection Auhtority (UOOU) on 2021-03-10.
Rank · Sector
#98
of 100 in Accomodation and Hospitality
Rank · Czech Republic
#71
of 73
Rank · All fines
#3,007
of 3,042
Case details
- Authority
- Czech Data Protection Auhtority (UOOU)
- Date
- 2021-03-10
- Controller / Processor
- Self Employed Person
- Sector
- Accomodation and Hospitality
- Quoted Articles
- Art. 5 (1) a), c) GDPR, Art. 6 (1) GDPR, Art. 12 (1), (2) GDPR, Art. 13 GDPR, Art. 14 GDPR, Art. 15 GDPR, Art. 22 GDPR
- Type of violation
- Insufficient legal basis for data processing
Summary
The Czech DPA has imposed a fine of EUR 200 on a self employed person. The accused obtained scans of identity cards from foreign subjects who booked accommodation there and kept them for an indefinite period of time. The accused was then unable to provide evidence of consent to such processing to the personal data.
Open original source
Links to the regulator's original publication or another source.
Related fines
Czech Republic
2024-04-15
13,900,000 €
ETid-2298
Avast Software s.r.o.
Industry and Commerce
Czech Republic
2023-08-02
178,000 €
ETid-2592
Multiple website operators
Not assigned
Czech Republic
2021-01-04
118,500 €
ETid-513
Unknown
Industry and Commerce
Czech Republic
2021-01-20
26,710 €
ETid-2792
Legal Person
Not assigned
Czech Republic
2020-12-18
26,710 €
ETid-2793
Legal Person
Not assigned
Czech Republic
2020-09-30
20,050 €
ETid-2828
Legal Person
Industry and Commerce