Experian Nederland B.V. – €2,700,000 Fine (Netherlands, 2025)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
Experian Nederland B.V. was fined €2,700,000 for processing personal data without a legal reason. This matters because it shows that companies must have a valid reason to handle people's information. Experian has decided to stop its operations in the Netherlands and will delete its database.
What happened
Experian processed personal data without a sufficient legal basis.
Who was affected
Individuals whose creditworthiness information was processed by Experian.
What the authority found
The Dutch authority ruled that Experian failed to inform people about how their data was being used, violating GDPR rules.
Why this matters
This case highlights the importance of having a valid legal basis for processing personal data. Other companies should ensure they are transparent about how they use people's information.
GDPR Articles Cited
View original scraped data
Original data from scraper before AI verification against source document.
The Dutch DPA has imposed a fine of EUR 2,700,000 on Experian Nederland B.V. The controller, a company that determines individuals' creditworthiness and sells this information, processed personal data without a sufficient legal basis. The controller also failed to inform data subjects about the processing of their data. Following the decision, the company decided to stop its activities in the Netherlands and will delete its database by the end of the year.
Related Enforcement Actions (1)
Other enforcement actions involving Experian Nederland B.V. in NL
Details
Fine Date
16 October 2025
Authority
Autoriteit Persoonsgegevens
Fine Amount
€2,700,000
Enforcement Tracker ID
ETid-2908
About this data
Cite as: Cookie Fines. Experian Nederland B.V. - Netherlands (2025). Retrieved from cookiefines.eu
Last updated: