Bank – €75,000 Fine (Belgium, 2021)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
A Belgian bank was fined €75,000 for a conflict of interest involving its data protection officer. This matters because it underscores the need for independence in data protection roles within organizations.
What happened
The bank's data protection officer also held a role that required reporting to a department he managed, creating a conflict of interest.
Who was affected
The bank's data protection officer was directly involved in the conflict of interest issue.
What the authority found
The Belgian data protection authority determined that the bank violated GDPR by allowing a conflict of interest in the data protection officer's role.
Why this matters
This case stresses the importance of maintaining independence for data protection officers to ensure unbiased data protection practices. Companies should evaluate their organizational structures to prevent conflicts of interest.
GDPR Articles Cited
The Belgian DPA has imposed a fine of EUR 75,000 on a bank. The DPA identified a conflict of interest regarding the data protection officer. In addition to his work as data protection officer, he was also head of a department to which he had to report in his capacity as data protection officer. The DPA considered this to be a violation of Art. 38 (6) GDPR.
Related Enforcement Actions (0)
No other enforcement actions found for Bank in BE
This is the only recorded action for this entity in this jurisdiction.
Details
Fine Date
16 December 2021
Authority
Autorité de Protection des Données
Fine Amount
€75,000
Enforcement Tracker ID
ETid-994
About this data
Cite as: Cookie Fines. Bank - Belgium (2021). Retrieved from cookiefines.eu
Last updated: