Details:
| Summary | The Belgian data protection authority has imposed a fine of 10,000 euros on a merchant who wanted to use an electronic identity card (eID) to create a customer card. The DPA’s investigation revealed that the merchant required access to personal data located on the eID, including the photo and barcode which is linked to the data subject’s identification number. In the meantime, the decision of the data protection authority has been annulled by a court: link |
| Link: | link |
| Related articles: | Art. 5 (1) c) GDPR |
| Type: | Non-compliance with general data processing principles |
| Fine: | EUR 10,000 |
| Sector | Industry and Commerce |
All data is based on The CMS’s Law GDPR Enforcement Tracker Source: https://www.enforcementtracker.com/