Company in the financial sector – €80,000 Fine (Germany, 2019)

€80,000Bundesbeauftragter für den Datenschutz12 April 2019Germany
final
Fine

General GDPR enforcement action

This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.

A financial services company in Germany was fined for improperly disposing of customer documents containing personal data. The papers were thrown out without being anonymized, leading to a breach of privacy. This incident stresses the need for secure disposal of sensitive information.

What happened

A financial company disposed of customer documents without anonymizing them, leading to a privacy breach.

Who was affected

Two customers whose personal data was exposed due to improper document disposal.

What the authority found

The German authority ruled that the company failed to protect personal data, violating GDPR's integrity and confidentiality requirements.

Why this matters

This fine highlights the importance of secure data disposal methods to protect customer privacy. Businesses should ensure that all personal data is anonymized or securely destroyed before disposal to prevent unauthorized access.

GDPR Articles Cited

Art. 5 GDPR
Art. 32 GDPR
Germany enforcementBundesbeauftragter für den Datenschutz actionsAll Company in the financial sector actions
Full Legal Summary
Detailed

In an administrative decision dated 12 April 2019, the authority imposed a fine of 80,000 euros on a medium-sized financial services company. This company had failed to take the necessary care to preserve the integrity and confidentiality of information within the meaning of Art. 5 para. 1 lit. f GDPR when disposing of documents containing personal data of two customers. Thus, without prior anonymisation, the papers were disposed of in the general waste paper recycling system, where the documents were found by a neighbour.

Related Enforcement Actions (0)

No other enforcement actions found for Company in the financial sector in DE

This is the only recorded action for this entity in this jurisdiction.

Details

Fine Date

12 April 2019

Authority

Bundesbeauftragter für den Datenschutz

Fine Amount

€80,000

Enforcement Tracker ID

ETid-27

Sources

About this data

Data: CMS GDPR Enforcement Tracker
Licensed under CC BY-NC-SA 4.0
AI-verified and classified

Cite as: Cookie Fines. Company in the financial sector - Germany (2019). Retrieved from cookiefines.eu

Report Inaccuracy

Last updated: