Court case 8 O 1280/21 – Court Ruling (Germany, 2022)

The data subject had lost his insurance certificates. He therefore sent an access request under Article 15(1) GDPR to the insurance provider (the controller) to obtain them. The Regional Court of Erfurt (LG Erfurt) held that the question of whether Article 15 GDPR may be used for non-data protection-related requests or whether it is an abuse of rights is controversial and the case law is not consistent on the matter. Therefore, it requested a preliminary ruling from the CJEU on the following questions: 1. Is Article 15(3) GDPR in conjunction with Article 12(5) GDPR to be interpreted to the effect that the controller is not obliged to provide the data subject a first copy of his personal data processed by the controller free of charge if the data subject does not request it for purposes referred to in the first sentence of recital 63 to the GDPR (namely to become aware of the processing of his personal data and to be able to check its lawfulness) but instead pursues another - non-data protection-related but legitimate - purpose? 2. If the answer to question 1 is no: a) Can a national provision of a Member State which was adopted before the entry into force of the GDPR be considered as a restriction on the right to a free copy of the personal data processed by the controller under Article 23(1) GDPR? b) If the answer to question 2a is in the affirmative: Is Article 23(1) GDPR to be interpreted as meaning that the rights and freedoms of other persons referred to therein also include their interest in being relieved of the costs associated with the provision of a copy of data pursuant to the first sentence of Article 15(3) GDPR and other expenses caused by the provision of the copy? c) If the answer to question 2b is affirmative: In the doctor-patient relationship, does the provision of a copy of the patient's personal data from the patient's file always and irrespective of the specific circumstances of the individual case give the doctor a right to charge the pati