Greece
National Bank of Greece
20,000 €
GDPR enforcement action by Hellenic Data Protection Authority (HDPA) on 2021-08-26.
Rank · Sector
#159
of 322 in Finance, Insurance and Consulting
Rank · Greece
#34
of 93
Rank · All fines
#1,047
of 3,050
Case details
- Authority
- Hellenic Data Protection Authority (HDPA)
- Date
- 2021-08-26
- Controller / Processor
- National Bank of Greece
- Sector
- Finance, Insurance and Consulting
- Quoted Articles
- Art. 12 (1), (2), (3) GDPR, Art. 15 (1) GDPR
- Type of violation
- Insufficient fulfilment of data subjects rights
Summary
The Hellenic DPA has imposed a fine of EUR 20,000 on the National Bank of Greece. A data subject had filed a complaint against a company and the bank after they failed to comply with his right to information. After returning a product he had purchased from a company, the data subject had asked the company via Facebook Messenger to inform him about the request to cancel his credit card statements sent electronically to the bank. However, the controller refused to comply, whereupon the data subject asserted the same right with the bank, which, however, did not provide him with a response.
Open original source
Links to the regulator's original publication or another source.
Related fines
Greece
2022-07-13
20,000,000 €
ETid-1268
Clearview Al Inc.
Industry and Commerce
Greece
2022-01-27
6,000,000 €
ETid-1024
Cosmote Mobile Telecommunications S.A.
Media, Telecoms and Broadcasting
Greece
2022-01-27
3,200,000 €
ETid-1025
OTE Group
Media, Telecoms and Broadcasting
Greece
2024-02-28
2,995,140 €
ETid-2284
Hellenic Post (ΕΛΛΗΝΙΚΑ ΤΑΧΥΔΡΟΜΕΙΑ ΑΝΩΝΥΜΗ ΕΤΑΙΡΕΙΑ)
Transportation and Energy
Greece
2025-06-25
550,000 €
ETid-2878
Vodafone – PANAFON A.E.E.T.
Media, Telecoms and Broadcasting
Greece
2024-05-27
400,000 €
ETid-2556
Ministry of Interior (Greece)
Public Sector and Education