Data Subject versus The State Secretary for Justice and Security, on behalf of the Child Protection Council – Court Ruling (Netherlands, 2025)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
On 24 January 2023, the data subject made a rectification request to the State Secretary for Justice and Security (controller), regarding a report drafted by the Dutch Child Protection Board (Raad voor de Kinderbescherming, RvdK). The report contained the results of a professional assessment of the data subject’s parenting capacity, contributing to the subsequent placement of the child under the supervision of child protection services and out of the data subject’s custody. The data subject argued that the report contained factual inaccuracies, misleading terminology (such as “psychiatric issues”, “substance use”), and painted an incorrect picture of her due to the absence of important events in the timeline of the report. In 16 November 2023, the controller rejected the rectification request. It claimed that the contested data did not qualify as personal data under the GDPR because they were impressions and opinions that had been received in connection with the RvdK's investigation. The data subject made an objection to the decision of the controller. After the reassessment of the request, some terms were adjusted, e.g. “psychiatric issues” was replaced with “psychological issues”. However, the controller rejected the request in part, maintaining that much of the content reflected professional impressions or third-party statements, mainly the opinion of the father of the child, not subject to rectification under Article 16 GDPR. The data subject filed an appeal before the court of first instance (District Court of Midden-Nederland) against the controller regarding the partial rejection of his request. The court found that the disputed data did not meet the threshold for rectification. It held that, from settled case law by the highest administrative court, it follows that not all inaccuracies are eligible for correction under Article 16 GDPR. The inaccuracies must be easy and objective to determine to qualify for rectification. The court held that the cont
GDPR Articles Cited
On 24 January 2023, the data subject made a rectification request to the State Secretary for Justice and Security (controller), regarding a report drafted by the Dutch Child Protection Board (Raad voor de Kinderbescherming, RvdK). The report contained the results of a professional assessment of the data subject’s parenting capacity, contributing to the subsequent placement of the child under the supervision of child protection services and out of the data subject’s custody. The data subject argued that the report contained factual inaccuracies, misleading terminology (such as “psychiatric issues”, “substance use”), and painted an incorrect picture of her due to the absence of important events in the timeline of the report. In 16 November 2023, the controller rejected the rectification request. It claimed that the contested data did not qualify as personal data under the GDPR because they were impressions and opinions that had been received in connection with the RvdK's investigation. The data subject made an objection to the decision of the controller. After the reassessment of the request, some terms were adjusted, e.g. “psychiatric issues” was replaced with “psychological issues”. However, the controller rejected the request in part, maintaining that much of the content reflected professional impressions or third-party statements, mainly the opinion of the father of the child, not subject to rectification under Article 16 GDPR. The data subject filed an appeal before the court of first instance (District Court of Midden-Nederland) against the controller regarding the partial rejection of his request. The court found that the disputed data did not meet the threshold for rectification. It held that, from settled case law by the highest administrative court, it follows that not all inaccuracies are eligible for correction under Article 16 GDPR. The inaccuracies must be easy and objective to determine to qualify for rectification. The court held that the cont
Outcome
Court Ruling
A ruling by a national court on a data-protection matter.
Related Cases (0)
No other cases found for Data Subject versus The State Secretary for Justice and Security, on behalf of the Child Protection Council in NL
This is the only recorded case for this entity in this jurisdiction.
Details
About this data
Cite as: Cookie Fines. Data Subject versus The State Secretary for Justice and Security, on behalf of the Child Protection Council - Netherlands (2025). Retrieved from cookiefines.eu
Last updated: