SC Raiffeisen Bank SA – €2,000 Fine (Romania, 2022)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
SC Raiffeisen Bank SA was fined for mistakenly using a person's phone number to send transaction alerts. This mistake shows the importance of handling personal data carefully to avoid privacy breaches. The affected individual was not even a customer of the bank.
What happened
SC Raiffeisen Bank SA sent transaction alerts to a non-customer using the wrong phone number.
Who was affected
A person who received transaction alerts from the bank without being a customer.
What the authority found
The Romanian DPA found that the bank used incorrect personal data, violating GDPR's accuracy requirements.
Why this matters
This case highlights the need for companies to ensure data accuracy and verify customer information to prevent privacy violations. Businesses should implement checks to avoid similar errors.
GDPR Articles Cited
The Romanian DPA has imposed a fine of EUR 2,000 on SC Raiffeisen Bank SA. An individual had filed a complaint with the DPA for receiving text messages about money transfers to certain persons that they had not effected. During its investigation, the DPA found that the bank had accidentally used the telephone number of the data subject for transaction purposes in 44 cases. The data subject was not a customer of the bank and had not requested the transactions.
Related Enforcement Actions (0)
No other enforcement actions found for SC Raiffeisen Bank SA in RO
This is the only recorded action for this entity in this jurisdiction.
Details
Fine Date
9 September 2022
Authority
Autoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal
Fine Amount
€2,000
Enforcement Tracker ID
ETid-1385
About this data
Cite as: Cookie Fines. SC Raiffeisen Bank SA - Romania (2022). Retrieved from cookiefines.eu
Last updated: