Operator of a swimming pool – €50,000 Fine (Germany, 2022)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
A swimming pool operator in Germany was fined €50,000 for collecting more visitor data than necessary for Covid contact tracing. This case shows the importance of limiting data collection to what is legally required. Businesses should review their data practices to avoid similar fines.
What happened
The swimming pool operator collected excessive visitor data for Covid contact tracing.
Who was affected
Visitors to the swimming pool whose data was collected beyond necessary contact tracing requirements.
What the authority found
The data protection authority fined the operator for processing more data than legally required, violating GDPR's data minimization principle.
Why this matters
This fine highlights the need for businesses to collect only the data necessary for specific purposes. Companies should regularly assess their data collection practices to ensure compliance with data protection laws.
GDPR Articles Cited
The DPA of Brandenburg has imposed a five-digit fine on the operator of an outdoor swimming pool. The controller had processed more visitor data than legally required for contact tracing purposes in the context of the Covid pandemic.
Related Enforcement Actions (0)
No other enforcement actions found for Operator of a swimming pool in DE
This is the only recorded action for this entity in this jurisdiction.
Details
Fine Date
1 January 2022
Authority
Bundesbeauftragter für den Datenschutz
Fine Amount
€50,000
Enforcement Tracker ID
ETid-1796
About this data
Cite as: Cookie Fines. Operator of a swimming pool - Germany (2022). Retrieved from cookiefines.eu
Last updated: