Restaurant – €170 Fine (Germany, 2021)

€170Bundesbeauftragter für den Datenschutz1 January 2021Germany
final
Fine

General GDPR enforcement action

This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.

In order to identify a guest who had not paid, several visitors were contacted by employees of a restaurant. For this purpose, the telephone numbers provided by the guests as part of the Covid contact tracing tracing were used. Since the guests had provided their data solely for infection control purposes, the DPA considered the contacting for the purpose of identifying the guest to be a violation of the principle of purpose limitation (Art. 5 (1) b) GDPR).

GDPR Articles Cited

Art. 5(1)(b) GDPR
Germany enforcementBundesbeauftragter für den Datenschutz actionsAll Restaurant actions
Full Legal Summary

In order to identify a guest who had not paid, several visitors were contacted by employees of a restaurant. For this purpose, the telephone numbers provided by the guests as part of the Covid contact tracing tracing were used. Since the guests had provided their data solely for infection control purposes, the DPA considered the contacting for the purpose of identifying the guest to be a violation of the principle of purpose limitation (Art. 5 (1) b) GDPR).

Related Enforcement Actions (9)

Other enforcement actions involving Restaurant in DE

Fine
Jan 2019· Bundesbeauftragter für den Datenschutz

Video surveillance cameras have been used in violation of principle of data minimisation (monitoring also of customer areas in restaurants).

€2K
Fine
Nov 2019· Bundesbeauftragter für den Datenschutz

Excessive use of video surveillance in violation of the principle of data minimization.

€5K
Fine
Jan 2020· Bundesbeauftragter für den Datenschutz

In order to combat the Covid 19 pandemic, a restaurant had put out an open list in which visitors had to enter their contact data. The fact that the l...

€75
Fine
Jan 2020· Bundesbeauftragter für den Datenschutz

In order to combat the Covid 19 pandemic, a restaurant had put out an open list in which visitors had to enter their contact data. The fact that the l...

€75
Fine
Jan 2020· Bundesbeauftragter für den Datenschutz

Excessive use of video surveillance in violation of the principle of data minimization.

€10K
Fine
Jan 2020· Bundesbeauftragter für den Datenschutz

In order to combat the Covid 19 pandemic, a restaurant had put out an open list in which visitors had to enter their contact data. The fact that the l...

€75
Fine
Jan 2020· Bundesbeauftragter für den Datenschutz

Excessive use of video surveillance in violation of the principle of data minimization.

€3K
Fine
Jan 2021· Bundesbeauftragter für den Datenschutz

A restaurant had disposed of 120 completed guest registration forms for contact tracing purposes during the Covid-19 pandemic in a publicly-accessible...

Current
Jan 2021

Fine

€170

Fine
Jan 2022· Bundesbeauftragter für den Datenschutz

The DPA from Baden-Württemberg imposed a fine of EUR 500 on a restaurant. The owner had disposed of a large quantity of Covid contact forms in the for...

€500

Details

Fine Date

1 January 2021

Authority

Bundesbeauftragter für den Datenschutz

Fine Amount

€170

Enforcement Tracker ID

ETid-1209

Sources

About this data

Data: CMS GDPR Enforcement Tracker
Licensed under CC BY-NC-SA 4.0
AI-verified and classified

Cite as: Cookie Fines. Restaurant - Germany (2021). Retrieved from cookiefines.eu

Report Inaccuracy

Last updated: