fbpx

Free tools and resources for Data Protection Officers!

Tag Archives for " Greece "

PwC fined 150,000 euros for infringements of the GDPR

The Hellenic Data Protection Authority, in response to a complaint, conducted an ex officio investigation of the lawfulness of the processing of personal data of the employees of the company ‘PriceWaterhouseCoopers Business Solutions SA’ (PwC).

According to the complaint, employees were required to give consent to the processing of their personal data. Hellenic DPA’s fined PwC €150,000 for selection and application of inappropriate legal basis and violation of the principle of accountability.

Source: Company fined 150,000 euros for infringements of the GDPR

European Commission refers Greece and Spain to Court

The European Commission decided to refer Greece and Spain to the Court of Justice of the EU for failing to transpose the EU rules on personal data protection (the Data Protection Law Enforcement Directive, Directive (EU) 2016/680).

In April 2016, the Council and the European Parliament agreed the Directive had to be transposed into national law by 6 May 2018.

Source: Data protection: Commission refers Greece and Spain to Court

Greek DPA Issues EUR 30,000 Fine For Data Protection Violation

On April 15, 2019, the Greek Data Protection Authority fined Hellenic Petroleum S.A. EUR 20,000 for unlawful processing of personal data and EUR 10,000 for failing to adopt appropriate data security measures.

Hellenic Petroleum S.A. had engaged a vendor to conduct a study on its behalf. The study was exposed online, and its results—which included sensitive data such as political opinions, trade union membership and participation in associations—was publicly accessible on the Internet.

Source: Greek DPA Issues EUR 30,000 Fine For Data Protection Violation

Hellenic DPA does “ex officio” GDPR compliance investigation

The Hellenic DPA, in order to a) explore the level of compliance with the General Data Protection Regulation (GDPR) and the specific legislation on e-privacy, b) raise the awareness of data controllers and data subjects, and also c) exercise its envisaged powers, has carried out “ex officio” investigation.

Investigation was initiated in December 2018 and is still ongoing. The Hellenic DPA carried out an investigation to 65 controllers operating online in the fields of financial services, insurance, e-commerce, ticket services and public sector services. DPA  explores the way specific requirements are met in the areas of transparency, the use of cookies, email marketing and the security of websites.

Source: Initial conclusions from the Hellenic DPA’s “ex officio” GDPR compliance investigation

Eight countries to miss EU data protection deadline

The EU starts enforcing its general data protection regulation on 25 May – but Belgium, Bulgaria, Cyprus, Czech Republic, Greece, Hungary, Lithuania and Slovenia won’t be ready. The delay will cause legal uncertainty.

Source: Eight countries to miss EU data protection deadline

Greek DPA “further elaborates” on processing of data stored in corporate computers

The Hellenic data protection authority (‘HDPA’) issued, on 19 April 2018, Decision No. 34/2018 on a complaint filed by a former employee of N. KRITIKOS – G. NTAIRTZES SA PAPER TRADE alleging that the Company denied his right to access and unlawfully processed his personal data.

In particular, the Company had carried out an inspection of the computer used by the Complainant for professional purposes during his absence and without previously notifying him or obtaining his consent, which he alleged also contained personal files.

Source: Greece: HDPA “further elaborates” on processing of data stored in corporate computers

>