Municipality of Beaucaire – Court Ruling (France, 2024)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
The Municipality of Beaucaire faced a ruling for improperly using video surveillance and license plate reading devices. The French data protection authority found that the municipality did not have the right to use these devices for their intended purpose. This case highlights the need for public authorities to comply with data protection laws.
What happened
The municipality was found to have used surveillance devices without proper legal authority.
Who was affected
Residents and visitors in the areas monitored by the surveillance cameras were affected.
What the authority found
The French DPA ruled that the municipality violated GDPR by not having a valid legal basis for their surveillance practices.
Why this matters
This ruling underscores the importance of compliance with data protection laws for public authorities, reminding them to ensure they have the right to collect and process personal data.
GDPR Articles Cited
View original scraped data
Original data from scraper before AI verification against source document.
National Law Articles
The French DPA (CNIL) issued a decision against the municipality for multiple violations of the GDPR stemming from a video surveillance system and automatic license plate reading devices. According to the CNIL, the municipality was not a competent authority entitled under the [https://www.legifrance.gouv.fr/codes/texte_lc/LEGITEXT000025503132/ Internal Security Code] (Code de la sécurité intérieure) to implement automated reading devices for the registration plates of vehicles. Additionally, the collection of registration plate data for the sole purpose of responding to the requests of law enforcement officials, exercising their judicial police duties would not correspond to one of the purposes listed in article L. 251-2 of Internal Security Code. Also, the municipality was obliged to perform the DPIA, because 73 cameras covered the areas accessible to the public, inter alia areas close to major routes of passage and several public services and infrastructure. Hence, data processing at hand posed a high risk to rights and freedoms of natural persons and the duty to perform DPIA under Article 35 GDPR was due. The CNIL also found the municipality violated Article 32 GDPR for several reasons, including network infrastructure issues, usage of a server operating systems with no update-support for nearly 10 years and no maintained service by the developer, and for insufficient practices regarding the security of passwords used for applications within the community. The municipality filed an appeal to overrule the decision. The French Supreme Administrative Court (Conseil d'Etat) rejected the appeal. First, the court emphasised that the municipality implemented the devices in question for the sole purpose of responding to the requests of the security forces, i.e., making the data available to the security forces for the exercise of their judicial police duties. However, such a purpose was not provided for in article L. 251-2 of the Internal Security Code, making the ac
Outcome
Court Ruling
A ruling by a national court on a data-protection matter.
Related Cases (0)
No other cases found for Municipality of Beaucaire in FR
This is the only recorded case for this entity in this jurisdiction.
Details
About this data
Cite as: Cookie Fines. Municipality of Beaucaire - France (2024). Retrieved from cookiefines.eu
Last updated: