Denmark
Arp Hansen Hotel Group A/S
147,800 €
GDPR enforcement action by Danish Data Protection Authority (Datatilsynet) on 2020-07-28.
Rank · Sector
#6
of 100 in Accomodation and Hospitality
Rank · Denmark
#4
of 29
Rank · All fines
#416
of 3,050
Case details
- Authority
- Danish Data Protection Authority (Datatilsynet)
- Date
- 2020-07-28
- Controller / Processor
- Arp Hansen Hotel Group A/S
- Sector
- Accomodation and Hospitality
- Quoted Articles
- Art. 5 (1) e) GDPR
- Type of violation
- Non-compliance with general data processing principles
Summary
During an inspection, the supervisory authority reviewed a number of IT systems to examine whether Arp-Hansen had sufficient procedures in place to ensure that personal data were not kept longer than necessary for the purposes of collection. It was found that one of the reservation systems contained a large amount of personal data that should already have been deleted in accordance with the deletion deadlines set by Arp-Hansen itself.
Open original source
Links to the regulator's original publication or another source.
Related fines
Denmark
2022-04-05
1,300,000 €
ETid-1114
Danske Bank
Finance, Insurance and Consulting
Denmark
2025-09-02
200,900 €
ETid-2891
ILVA A/S
Industry and Commerce
Denmark
2019
160,000 €
ETid-21
Taxa 4x35
Transportation and Energy
Denmark
2022-06-22
134,000 €
ETid-1241
Gyldendal A/S
Media, Telecoms and Broadcasting
Denmark
2021-09-29
107,000 €
ETid-857
Danish Cancer Society
Health Care
Denmark
2021-07-09
80,700 €
ETid-757
Medicals Nordic I/S
Health Care