Piraeus Bank gets Greek GDPR fine over confidentiality breach and failure to report

( March 30, 2023, 10:38 GMT | Official Statement) -- MLex Summary: Piraeus Bank has been fined 30,000 euros by the Greek data protection authority for illegal processing of data for illegal disclosure of data and for failure to report a data breach, in violation of the EU's GDPR. The bank had passed the data subject's account information to the opposing party in a lawsuit, the regulator said. The bank found out it was an employee's mistake and decided not to report the incident — either to the data subject or to the regulator — because it considered it had taken sufficient technical and organizational measures. The authority concluded that the bank had violated the principles of lawfulness and data confidentiality, as well as its obligation to report an incident.The decision is attached in Greek. ...

Prepare for tomorrow’s regulatory change, today

MLex identifies risk to business wherever it emerges, with specialist reporters across the globe providing exclusive news and deep-dive analysis on the proposals, probes, enforcement actions and rulings that matter to your organization and clients, now and in the longer term.

Know what others in the room don’t, with features including:

Daily newsletters for Antitrust, M&A, Trade, Data Privacy & Security, Technology, AI and more
Custom alerts on specific filters including geographies, industries, topics and companies to suit your practice needs
Predictive analysis from expert journalists across North America, the UK and Europe, Latin America and Asia-Pacific
Curated case files bringing together news, analysis and source documents in a single timeline

Experience MLex today with a 14-day free trial.

Start Free Trial

Already a subscriber? Click here to login

Piraeus Bank gets Greek GDPR fine over confidentiality breach and failure to report

Prepare for tomorrow’s regulatory change, today

Documents

Related Sections