Findomestic Banca spa: Non-compliance with general data processing principles

The Italian DPA has imposed a fine of EUR 10,000 on Findomestic Banca spa. A customer had filed a complaint with the DPA regarding a breach of confidentiality related to the financial institution. The controller had unauthorizedly sent several payment reminders to the data subject's wife regarding a loan taken out by the data subject. The wife had indeed guaranteed a loan taken out by the data subject, however not the loan in question.

GDPR Articles: Art. 5 (1) a), c) GDPR
Industry: Finance, Insurance and Consulting