Funeral Home – €7,800 Fine (Poland, 2025)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
A funeral home in Poland was fined EUR 7,800 after losing boxes of personal data on the road. The company failed to secure sensitive documents, which were found by police after falling from an open truck. This incident shows how important it is for businesses to protect personal information properly.
What happened
The funeral home stored personal data in unlocked boxes and transported them in an open truck, leading to a data breach.
Who was affected
People whose personal information was contained in the lost documents.
What the authority found
The Polish data protection authority determined that the funeral home did not take adequate measures to prevent data loss, violating GDPR standards.
Why this matters
This ruling emphasizes the need for businesses to implement strict security protocols for handling personal data. Companies must ensure that sensitive information is stored and transported securely.
GDPR Articles Cited
View original scraped data
Original data from scraper before AI verification against source document.
The Polish DPA has fined a funeral home EUR 7,800. The funeral home failed to implement sufficient technical and organisational measures to prevent a data breach. The funeral home had stored documents containing personal data in unlocked boxes. The company also transported those boxes in an open truck, which resulted in 10 boxes falling out of the truck and landing on the side of a road, where the boxes were found by the police. The driver did not notice the loss, due to the fact that that the boxes had not been counted. This resulted in the funeral home not reporting the incident to the DPA. During the investigation, the DPA found that the controller had failed to carry out a sufficient risk analysis and had failed to demonstrate sufficient supervision over the data processing. ---Update--- The decision made by the DPA was upheld by the Provincial Administrative Court in Warsaw.
Related Enforcement Actions (0)
No other enforcement actions found for Funeral Home in PL
This is the only recorded action for this entity in this jurisdiction.
Details
Fine Date
15 April 2025
Authority
Urząd Ochrony Danych Osobowych
Fine Amount
€7,800
Enforcement Tracker ID
ETid-2589
About this data
Cite as: Cookie Fines. Funeral Home - Poland (2025). Retrieved from cookiefines.eu
Last updated: