Belastingdienst – Court Ruling (Netherlands, 2023)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
A Dutch court ruled that the Tax Authority could not provide a business owner access to certain personal data due to an ongoing investigation. This matters because it highlights the balance between a person's right to access their data and the need for authorities to conduct investigations without interference.
What happened
The Gelderland District Court decided that the Tax Authority could deny access to personal data because of an ongoing investigation.
Who was affected
The business owner who requested access to his personal data held by the Tax Authority.
What the authority found
The court found that the Tax Authority was not required to grant access to the requested data due to the ongoing investigation, in line with Article 15 of GDPR.
Why this matters
This ruling emphasizes that while individuals have rights to access their data, those rights can be limited in certain situations, like ongoing investigations. Business owners should be aware that their requests for data access may be denied under similar circumstances.
GDPR Articles Cited
View original scraped data
Original data from scraper before AI verification against source document.
The data subject is the owner of multiple companies that were subject to several investigations that subsequently led to him losing subsidy grants. The data controller filed a request to access all information related to him and his companies in the Tax Authorities' records to understand why the grant was lost. The data subject specifically inquired about any information on him that was processed by the Tax Authority's Fraud Signalling Provision (FSV) and whether he was being subject to automated decision-making. The Tax Authority confirmed that the data subject’s personal data was held by the FSV and indicated that the information was not used for automated decision-making or profiling. The Authority denied the data subject access to information held by the FSV because there was an ongoing investigation into the legality of the systems used by the Tax Authority. Following the rejection, the data subject appealed the decision and requested access to information about him in eight of the Tax Authority's systems, including the FSV. In a decision of 10 January 2022, the Tax Authority rejected the appeal and stated that the request fell outside of the scope of the initial request and that access could not be granted due to the ongoing investigation. The data subject appealed the decision of 10 January 2022 to the Gelderland District Court. The Court first evaluated if the controller met the obligation to grant access to data according to Article 15 GDPR. In this instance, the controller is the Minister of Finance, as they are responsible for the oversight of the Dutch Tax Authority. Given the first request's broad nature, which requested information from FSV and similar systems controlled by the Tax Authority, the Court acknowledged that ongoing investigations into these systems prevented the Authority from providing access to them. However, the Court ruled that the controller was required to confirm whether the data subject's personal data was held in systems used
Outcome
Court Ruling
A ruling by a national court on a data-protection matter.
Related Cases (1)
Other cases involving Belastingdienst in NL
Details
About this data
Cite as: Cookie Fines. Belastingdienst - Netherlands (2023). Retrieved from cookiefines.eu
Last updated: