Local bank – €2,000 Fine (Hungary, 2019)

€2,000Nemzeti Adatvédelmi és Információszabadság Hatóság31 May 2019Hungary
final
Fine

General GDPR enforcement action

This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.

A local bank in Hungary was fined for not properly handling a customer's request to access CCTV recordings. The bank failed to provide copies of the recordings and did not respond in a timely manner, which violated the customer's rights under GDPR. This case highlights the importance of respecting customer rights to access their data.

What happened

The bank did not provide copies of CCTV recordings to a customer who requested them.

Who was affected

Customers of the bank who requested access to their personal data, including CCTV footage.

What the authority found

The authority found that the bank violated GDPR by not responding in time and failing to provide the requested data copies.

Why this matters

This case emphasizes that companies must respect customer rights to access their data and respond promptly to such requests. It also shows that businesses should consider anonymizing data to protect third-party privacy while fulfilling access requests.

GDPR Articles Cited

Art. 15 GDPR
Art. 18 GDPR
Art. 12(3) GDPR
Hungary enforcementNemzeti Adatvédelmi és Információszabadság Hatóság actionsAll Local bank actions
Full Legal Summary
Detailed

Customer of a local bank requested access to telephone conversation recordings as well as to CCTV recordings. The bank provided the copies of the recordings of telephone conversations and also provided the chance of reviewing the recordings at bank but rejected to provide copies of the CCTV recordings since the recordings also contained third parties personal data. The NAIH decided in this case that the bank failed to fulfil data subjects rights since it did not respond in due time and also failed to provide copies of the requested recordings. According to the NAIH, the controller could not refer the protection of third party data since the CCTV recordings affected public space open for every customer and the bank also could have anonymised certain parts of the recordings.

Related Enforcement Actions (0)

No other enforcement actions found for Local bank in HU

This is the only recorded action for this entity in this jurisdiction.

Details

Fine Date

31 May 2019

Authority

Nemzeti Adatvédelmi és Információszabadság Hatóság

Fine Amount

€2,000

Enforcement Tracker ID

ETid-252

Sources

About this data

Data: CMS GDPR Enforcement Tracker
Licensed under CC BY-NC-SA 4.0
AI-verified and classified

Cite as: Cookie Fines. Local bank - Hungary (2019). Retrieved from cookiefines.eu

Report Inaccuracy

Last updated: