IDIKA SA – €5,000 Fine (Greece, 2022)

€5,000Hellenic Data Protection Authority8 August 2022Greece
final
Fine

General GDPR enforcement action

This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.

IDIKA SA was fined EUR 5,000 for not informing people about how their personal data was used during free COVID-19 tests and for keeping the data longer than necessary. The Greek DPA found that IDIKA also failed to protect the data with proper security measures. This case shows the importance of transparency and data protection, especially in health-related services.

What happened

IDIKA SA failed to inform people about data use during COVID-19 tests and kept the data longer than needed.

Who was affected

Individuals who took free COVID-19 tests provided by IDIKA SA and whose personal data was processed.

What the authority found

The Greek DPA fined IDIKA SA for not informing people about data processing and for inadequate data protection measures, violating GDPR rules.

Why this matters

This case highlights the critical need for transparency and proper data protection in health services. Companies must ensure they inform users about data use and implement strong security measures.

GDPR Articles Cited

Art. 25 GDPR
Art. 5(1)(e) GDPR
Greece enforcementHellenic Data Protection Authority actionsAll IDIKA SA actions
Full Legal Summary
Detailed

The Hellenic DPA has imposed a fine of EUR 10,000 on IDIKA SA. IDIKA was operating in the context of providing free COVID-19 tests. The DPA found that IDIKA, in the course of its processing activities, did not sufficiently inform data subjects about the processing of their personal data. In addition, IDIKA stored personal data longer than necessary and had failed to implement sufficient technical and organizational measures to protect personal data.

Related Enforcement Actions (0)

No other enforcement actions found for IDIKA SA in GR

This is the only recorded action for this entity in this jurisdiction.

Details

Fine Date

8 August 2022

Authority

Hellenic Data Protection Authority

Fine Amount

€5,000

Enforcement Tracker ID

ETid-1439

Sources

About this data

Data: CMS GDPR Enforcement Tracker
Licensed under CC BY-NC-SA 4.0
AI-verified and classified

Cite as: Cookie Fines. IDIKA SA - Greece (2022). Retrieved from cookiefines.eu

Report Inaccuracy

Last updated: