Austrian Data Protection Authority (DSB) – Court Ruling (Austria, 2010)
Court ruling (pre-GDPR, Directive 95/46/EC)
This national court ruling predates the GDPR and interprets earlier data protection law. It is excluded from cookie statistics and the Risk Calculator.
An Austrian court ruled that a property manager violated privacy by posting a letter with personal details in a public hallway. This case highlights the importance of handling personal information carefully, even if some of it seems publicly accessible. The decision emphasizes that businesses must balance transparency with privacy rights.
What happened
A property manager publicly displayed a letter containing personal details without proper justification.
Who was affected
A person whose name, address, and membership details were included in the publicly posted letter.
What the authority found
The court decided that the property manager's action of displaying the entire letter was not justified and violated privacy rights.
Why this matters
This ruling underscores the need for businesses to handle personal information with care, even if some details are publicly accessible. It serves as a reminder that transparency obligations must be balanced with privacy rights.
GDPR Articles Cited
National Law Articles
The co-involved party filed a complaint before the Austrian DPA that the property manager publicly posted a letter from the Camber of Labor solely addressed to the co-involved party, thus violating the right to confidentiality according to §1 of the Austrian Data Protection Act (DSG). The co-involved party consulted with the Chamber of Labor regarding a circular resolution on renovating the facade of the property, expressing her concerns. The property manager was notified of the result of the consultation and received a letter specifically addressed to the co-involved party. Subsequently, the property manager displayed both the letter and the response publicly in the hallway. The letter included not only the questions of the co-involved party but also her name and address, that she was a member of the Chamber of Labor (Arbeiterkammer), and that she turned to them with her concerns. The property manager stated that she was legally obliged to do so, referencing §24 of the WEG (Law of Condominiums), and she was allowed to do that according to Article 6(1)(c) GDPR. However, the DPA stated that displaying the entire e-mail was disproportionate to fulfilling the property manager's obligations. The property manager (complainant) filed a complaint against the Austrian Data Protection Authority's decision at the Austrian Federal Administrative Court. She argued that the DPA was wrong in assuming that the data of the co-involved party was private, as the name and address of the co-involved party can be publicly accessed and identified in other ways (such as based on the name on the doorbell) and that the membership of the Chamber of Labor is mandatory, meaning it was not private information either. She also challenged the impossibility of legal justification as this act of data processing fell under the scope of legitimate interest. Furthermore, the DPA was also accused of not considering important evidence (letters) when ruling. The Court ruled that the complainant is ac
Outcome
Court Ruling
A ruling by a national court on a data-protection matter.
Related Cases (0)
No other cases found for Austrian Data Protection Authority (DSB) in AT
This is the only recorded case for this entity in this jurisdiction.
Details
About this data
Cite as: Cookie Fines. Austrian Data Protection Authority (DSB) - Austria (2010). Retrieved from cookiefines.eu
Last updated: