Public Power Corporation S.A. – €5,000 Fine (Greece, 2020)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
Public Power Corporation S.A. was fined €5,000 for not providing a customer with access to their personal data. The company did not give the customer a copy of their data as required by GDPR. This case underscores the necessity for companies to comply with data access requests without requiring customers to justify their requests.
What happened
Public Power Corporation S.A. failed to provide a customer with a copy of their personal data upon request.
Who was affected
Customers requesting access to their personal data from Public Power Corporation S.A.
What the authority found
The Hellenic Data Protection Authority ruled that the company violated GDPR by not providing the requested data, which customers are entitled to receive without needing to justify their request.
Why this matters
This decision reinforces that companies must honor data access requests and provide the requested information without requiring customers to explain their reasons. It highlights the importance of transparency in data processing.
GDPR Articles Cited
The Decision clarified that data subjects have a right of access to the processing of their personal data and that they must also be provided with a copy of the personal data processed. No reasons need to be given for the request.
Related Enforcement Actions (0)
No other enforcement actions found for Public Power Corporation S.A. in GR
This is the only recorded action for this entity in this jurisdiction.
Details
Fine Date
21 February 2020
Authority
Hellenic Data Protection Authority
Fine Amount
€5,000
Enforcement Tracker ID
ETid-242
About this data
Cite as: Cookie Fines. Public Power Corporation S.A. - Greece (2020). Retrieved from cookiefines.eu
Last updated: