Unknown – €40,000 Fine (Slovakia, 2021)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
A company in Slovakia was fined EUR 40,000 for not proving it conducted a data protection impact assessment and failing to have a contract with its processor. This case shows how important it is for businesses to document their data protection efforts and have proper agreements with partners handling personal data.
What happened
A Slovak company was fined for not proving a data protection impact assessment was done and lacking a contract with its processor.
Who was affected
Individuals whose data was processed by the company without proper accountability and transparency measures.
What the authority found
The Slovak authority found that the company violated GDPR by not demonstrating accountability and failing to ensure fairness and transparency in data processing.
Why this matters
This ruling highlights the necessity for businesses to maintain clear documentation of their data protection practices and to formalize relationships with processors through contracts. It stresses the importance of accountability and transparency in data management.
GDPR Articles Cited
The Slovak DPA has imposed a fine of EUR 40,000 on a controller. The controller had violated the principle of accountability (lack of proof that a data protection impact assessment had been carried out) and the principle of fairness and transparency. In addition, the controller had not concluded a contract with the processor.
Related Enforcement Actions (3)
Other enforcement actions involving Unknown in SK
Fine
€40K
Details
Fine Date
1 January 2021
Authority
Úrad na ochranu osobných údajov
Fine Amount
€40,000
Enforcement Tracker ID
ETid-1360
About this data
Cite as: Cookie Fines. Unknown - Slovakia (2021). Retrieved from cookiefines.eu
Last updated: