Enforcement
EN IDIKA SA: Non-compliance with general data processing principles
€5,000 fine - Hellenic Data Protection Authority (HDPA)
Content
The Hellenic DPA has imposed a fine of EUR 10,000 on IDIKA SA. IDIKA was operating in the context of providing free COVID-19 tests. The DPA found that IDIKA, in the course of its processing activities, did not sufficiently inform data subjects about the processing of their personal data. In addition, IDIKA stored personal data longer than necessary and had failed to implement sufficient technical and organizational measures to protect personal data.
GDPR Articles: Art. 5 (1) e) GDPR, Art. 25 GDPR
Industry: Industry and Commerce