Unknown – €18,000 Fine (Luxembourg, 2021)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
A company in Luxembourg was fined for not involving its data protection officer in important decisions. The company also failed to give the officer the resources needed to do their job properly. This case shows that businesses must prioritize data protection and support their officers.
What happened
A company failed to include its data protection officer in matters related to personal data protection.
Who was affected
Employees and customers whose personal data was not adequately protected due to the company's actions.
What the authority found
The Luxembourg data protection authority ruled that the company violated GDPR by not involving the data protection officer and not providing necessary resources.
Why this matters
This case highlights the need for companies to actively engage their data protection officers and ensure they have the tools to protect personal data. It sets a precedent for accountability in data protection practices.
GDPR Articles Cited
View original scraped data
Original data from scraper before AI verification against source document.
The DPA of Luxembourg has imposed a fine of EUR 18,000 on a company. According to the DPA, the controller firstly failed to involve the data protection officer in all matters relating to the protection of personal data. Secondly, the controller failed to provide the data protection officer with the necessary resources to perform his duties.
Related Enforcement Actions (13)
Other enforcement actions involving Unknown in LU
Fine
€18K
Details
Fine Date
31 May 2021
Authority
Commission Nationale pour la Protection des Données
Fine Amount
€18,000
Enforcement Tracker ID
ETid-726
About this data
Cite as: Cookie Fines. Unknown - Luxembourg (2021). Retrieved from cookiefines.eu
Last updated: