Company – €8,000 Fine (Lithuania, 2023)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
Lithuania fined a company EUR 8,000 for not fully allowing a person to access their personal data. The company didn't provide enough information about how the data was used or the reasons for processing it. This case highlights the importance of transparency in handling personal data.
What happened
A company failed to fully comply with a person's request to access their personal data.
Who was affected
Individuals who requested access to their personal data processed by the company.
What the authority found
The Lithuanian authority found that the company did not properly fulfill the individual's right to access their personal data, violating GDPR requirements.
Why this matters
This case emphasizes the need for companies to be transparent and thorough when responding to data access requests. Businesses should ensure they provide complete information about data processing to avoid penalties.
GDPR Articles Cited
The Lithuanian DPA has fined a company EUR 8, 000. The controller failed ot properly fulfil the data subject's right to access their personal data processed by the company. The controller partially provided information about the processing of the data subject's personal data, but the data subject was not given the opportunity to verify the legal basis (or bases) for the processing of their personal data, the specific data being processed, the purposes of processing, the retention period, etc.
Related Enforcement Actions (2)
Other enforcement actions involving Company in LT
Fine
€8K
Details
Fine Date
24 January 2023
Authority
Valstybine duomenu apsaugos inspekcija
Fine Amount
€8,000
Enforcement Tracker ID
ETid-2200
About this data
Cite as: Cookie Fines. Company - Lithuania (2023). Retrieved from cookiefines.eu
Last updated: