ING Bank N.V. Amsterdam - Bucharest office – €1,000 Fine (Romania, 2021)

€1,000Autoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal10 February 2021Romania
final
Fine

General GDPR enforcement action

This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.

ING Bank's Bucharest office was fined €1,000 for sending outdated personal data to a partner, risking privacy breaches. This is important because it shows that companies must keep personal data accurate and secure, or they could face penalties.

What happened

ING Bank sent outdated personal data to a partner, failing to ensure data accuracy and security.

Who was affected

The affected individuals were 270 people whose outdated personal data was shared.

What the authority found

The Romanian DPA found that ING Bank did not have adequate measures to protect personal data, violating GDPR requirements for data security.

Why this matters

This case emphasizes the need for businesses to regularly update and secure personal data. Failing to do so can lead to privacy breaches and fines.

GDPR Articles Cited

Art. 29(GDPR)
Art. 32(2) GDPR
Romania enforcementAutoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal actionsAll ING Bank N.V. Amsterdam - Bucharest office actions
Full Legal Summary
Detailed

The Romanian DPA (ANSPDCP) imposed a fine of EUR 1,000 on ING Bank N.V. Amsterdam - Bucharest Branch. It was found that the controller had sent files to a contractual partner in order to issue insurance policies. The sent files contained outdated information, as employees of the insurance policy monitoring department had not checked and processed the insurance policies according to the work process, which affected 270 people. Considering these aspects, it was found that the technical and organizational measures taken by the controller were insufficient, which resulted in the breach of confidentiality of personal data.

Related Enforcement Actions (1)

Other enforcement actions involving ING Bank N.V. Amsterdam - Bucharest office in RO

Fine
Dec 2020· Autoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal

The Romanian DPA (ANSPDCP) fined ING Bank N.V. Amsterdam - Bucharest office in the amount of EUR 3,000. The bank had contacted the data subject by e-m...

€3K
Current
Feb 2021

Fine

€1K

Details

Fine Date

10 February 2021

Authority

Autoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal

Fine Amount

€1,000

Enforcement Tracker ID

ETid-550

Sources

About this data

Data: CMS GDPR Enforcement Tracker
Licensed under CC BY-NC-SA 4.0
AI-verified and classified

Cite as: Cookie Fines. ING Bank N.V. Amsterdam - Bucharest office - Romania (2021). Retrieved from cookiefines.eu

Report Inaccuracy

Last updated: