Unknown – Fine (Czech Republic, 2020)

Fine
Úřad pro ochranu osobních údajů1 January 2020Czech Republic
final
Fine

General GDPR enforcement action

This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.

A state-subsidized organization in the Czech Republic shared employee photos on its website without proper permission. This is important because it shows that even public organizations must respect privacy rights. The lack of a fine indicates that the authority is focusing on compliance rather than punishment.

What happened

An organization shared photos of its employees online without a valid legal basis.

Who was affected

Employees whose photos were posted on the organization's website without their consent.

What the authority found

The Úřad pro ochranu osobních údajů found that the organization did not have sufficient legal grounds for sharing the photos.

Why this matters

This ruling highlights the need for all organizations, public or private, to have a valid reason before sharing personal information. It encourages businesses to review their practices regarding employee data.

GDPR Articles Cited

AI-verified

Art. 5(1)(a) GDPR
View original scraped data
Art. 5(1) a) GDPR

Original data from scraper before AI verification against source document.

Source verified 19 March 2026
amount discrepancy
Czech Republic enforcementÚřad pro ochranu osobních údajů actionsAll Unknown actions
Full Legal Summary
Detailed

State-subsidized organization shared photos of its employees on its website without a sufficient legal basis.

Related Enforcement Actions (10)

Other enforcement actions involving Unknown in CZ

Fine
Oct 2018· Úřad pro ochranu osobních údajů

Information was not provided.

€388
Fine
Feb 2019· Úřad pro ochranu osobních údajů

Information was not provided.

€776
Fine
Feb 2019· Úřad pro ochranu osobních údajů

Data was not processed in a manner that ensures appropriate security of the personal data, including protection against unauthorised or unlawful proce...

€582
Fine
Mar 2019· Úřad pro ochranu osobních údajů

Data was not only processed if adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed ('data min...

€10K
Fine
May 2019· Úřad pro ochranu osobních údajů

Information was not provided.

€194
Fine
Jan 2020· Úřad pro ochranu osobních údajů

A person had received an invoice for ordered goods, which, however, came from a different company than the one from which she had ordered the goods. T...

€2K
Fine
Jan 2020· Úřad pro ochranu osobních údajů

A company copied personal data from public registers, which was considered illegal by the Czech DPA, as it was not deemed necessary.

€19K
Current
Jan 2020

Fine

Fine
May 2020· Úřad pro ochranu osobních údajů

The Czech DPA (UOOU) imposed a fine against a company for processing personal data without a sufficent legal basis. Several individuals were contacted...

Fine
Jan 2021· Úřad pro ochranu osobních údajů

The Czech DPA (UOOU) fined 11 companies a total of EUR 118,500 for sending unrequested postal advertising messages to the mailboxes of various citizen...

€119K
Fine
Jun 2021· Úřad pro ochranu osobních údajů

The Czech DPA has imposed a fine of EUR 2,000 on an unknown controller. The accused did not respond to the subject's request to disclose what informat...

€2K

Details

Fine Date

1 January 2020

Authority

Úřad pro ochranu osobních údajů

Sources

About this data

Data: CMS GDPR Enforcement Tracker
Licensed under CC BY-NC-SA 4.0
AI-verified and classified

Cite as: Cookie Fines. Unknown - Czech Republic (2020). Retrieved from cookiefines.eu

Report Inaccuracy

Last updated: