Fine EUR 150,000 to multinational company in Greece for GDPR violations


The Greek Data Protection Authority has imposed a fine of 150,000 euros on PWC BS A.E. for violations of the General Data Protection Regulation. In particular, the Personal Data Protection Authority, upon a complaint, investigated on its own motion the legality of the processing of the personal data of employees of PWC BS (PRICEWATERHOUSECOOPERS BUSINESSSOLUTIONS SA) pursuant to which the abovementioned employees were forced to consent to the processing their personal data for three (3) distinct purposes.
The Authority considered PWC BS as the controller:
1) has undergone unlawful processing, in breach of the provisions of Article 5 (1) (e); a) of the GDPR (principle of legality), the personal data of its employees, as it applied an inappropriate legal basis under Art. 6 (1)  a  GDPR (consent) instead of the appropriate legal basis for the performance of the contract, compliance with a legal obligation and the superior legal interest (Art. 6 (1), b, c' and g  GDPR).
2) in an unlawful and no transparent manner, in breach of Article 5 (1) (e); (a) b and c (GDPR) (the principle of objectivity and transparency), the personal data of its employees, as it gave them the false impression that they processed it in accordance with the legal basis of their consent in accordance to 6 (1) a’GDPR.In practice, it was processed on another legal basis, for which the employees were never informed.
3) as controller, although he was responsible, was unable to comply with and demonstrate compliance with Article 5 (1) of the GDPR in breach of the principle of accountability provided for in Article 5 (2) and he carried the burden of compliance on employees.

Comments

Post a Comment

Popular posts from this blog

Annual Report on the execution of the European Court's judgments and decisions

Image
The Secretary General of the Council of Europe, Alain Berset, has called for further efforts to implement judgments from the European Court of Human Rights. Commenting on the  annual report for 2024  on the execution of the Court’s rulings, published today, the Secretary General said: “ This report shows what a concrete, positive impact judgments from the European Court of Human Rights have on the daily lives of the people of Europe. While a lot has been achieved, more needs to be done. The efficient execution of the Court's judgments is essential for the rule of law and democratic accountability in Europe .” The annual report from the Council of Europe’s Committee of Ministers shows that 992 cases were transferred from the European Court of Human Rights to Committee, which supervises their implementation by member states, in 2024. Of those 992 new cases, 194 were “leading” cases – often requiring action to be taken by states to prevent the same violations happ...
Read more

Ombudsman inquiry on Commission President’s text messages is a wake-up call for EU

Image
The European Ombudsman inquiry into the Commission’s handling of a request for text messages between its President and the CEO of a pharmaceutical company is a wake-up call for all EU institutions about ensuring accountability in an era of instant messaging. One year after the initial request by a journalist, the Commission has still not clarified whether messages reported to concern major vaccine procurement deals exist and whether the public is entitled to see them. The Ombudsman had asked the Commission, in a finding of maladministration in January, to conduct a more thorough search for the text messages. The Commission’s recent response failed to say whether it had looked directly and correctly for the text messages and if not, why not. While the response recognised that work-related text messages can be EU documents, it reiterated that the Commission’s internal policy is, in effect, not to register text messages. The Ombudsman has closed  the inquiry  and upheld...
Read more

Prison overcrowding remains a problem in Europe: Council of Europe’s annual penal statistics for 2023

Image
Prison overcrowding continues to be an acute and persistent problem in a significant number of European prison administrations, according to the Council of Europe’s Annual Penal Statistics on Prison Populations ( SPACE I ) for 2023. In countries with over 500,000 inhabitants, twelve prison administrations reported having more inmates than places available in January 2023. Overall, in Europe, the number of prisoners per 100 places available grew by 2% from 31 January 2022 to 31 January 2023 (from 91.7 to 93.5 inmates). Seven prison administrations reported a prison density of more than 105 inmates per 100 places available, indicating severe overcrowding: Cyprus (166 inmates per 100 places), Romania (120), France (119), Belgium (115), Hungary (112), Italy (109) and Slovenia (107). Five prison administrations reported very high prison density: Greece (103), Sweden (102), North Macedonia (101), Croatia (101) and Türkiye (100). Other administrations reported a prison density...
Read more

Cancellation of a flight: The refund of the airline ticket price must include the commission collected by an intermediary at the time of purchase (CJEU)

Image
Judgment of the Court in Case C-45/24 (15.1.2026)- Verein für Konsumenteninformation : Cancellation of a flight: the refund of the airline ticket price must include the commission collected by an intermediary at the time of purchase. It is not necessary for the airline to know the exact amount of that commission. Several travellers purchased airline tickets on the booking portal of the Opodo travel agency [1] for a KLM return flight from Vienna (Austria) to Lima (Peru). Since the flights were cancelled, KLM reimbursed the amount they had paid, minus approximately € 95 that Opodo had charged them as agency commission. The air passengers concerned assigned their potential rights to reimbursement to a consumer protection association. That association contends, before the Austrian courts, that the reimbursement of the cost of the airline tickets by the airline in question should include the agency commission charged to passengers, as in the present case, by a travel agency acting as that a...
Read more

Fully-funded PhD position in AI, Law and Public Power

Image
Erasmus University Rotterdam School of Law, department Law & Markets, is looking for a fulltime PhD researcher in AI, Law and Public Power (4,5 years with 20% teaching tasks). PhD AI, Law and Public Power Are you curious about how artificial intelligence is changing state actor powers? Do you want to conduct critical and in-depth legal research at the intersection of technology, law and power? And would you like to combine that with academic teaching? Then this PhD position at Erasmus School of Law is for you. Within the Law & Markets team, you will spend 4.5 years researching the legal regulation of AI in the public sector. How do we protect fundamental rights when algorithms help decide on who receives public benefits, how to perform enforcement or how to enact environmental policy? What is the role of the state, and where is the limit of government power in a data-driven society? You will have plenty of space to choose your own research angle and work in a multidisci...
Read more

THE CONCEPT OF WORKER (IN ARTICLE 45 TFEU)

Image
By Mpia Tsolaki, Lawyer** Freedom of movement for workers is founded on Article 45(1) TFEU and enshrined in fact in the abolition, set out in its second paragraph, of any discrimination based on nationality between workers of the Member States as regards employment, remuneration and other conditions of work and employment [1] . That prohibition has been regarded since the beginnings of the establishment of the single European Market as an indispensable corollary to its full integration since it has crucially promoted mobility of the workforce throughout the European Union (hereinafter EU) [2] .  From that point of view, it is therefore of outmost importance for ascertaining its ambit to determine at the outset the concept of "worker", which is not defined by neither the primary nor the secondary EU legislation. As expected, the Ariadne’s thread has been offered by the European Court of Justice (hereinafter ECJ) that has been constantly producing an ample case-law, which keepi...
Read more

The Delivery Delay Clause in Residential Construction Contracts: Consumer Protection in Cyprus and Europe

Image
By Giorgos Kazoleas, LL.M., Lawyer, Managing Partner at Legal Experts Cyprus The purchase or construction of a new residence is one of the most significant financial and personal decisions a consumer can make. Residential construction contracts or agreements for the sale of property under construction are a crucial and defining element of the entire process, as certain terms they may contain can be detrimental to the buyer. One of the most critical aspects is the contractual delivery time of the project and the provision for delay, through the so-called delivery delay clause. The Delivery Delay Clause: Its Role and Legal Nature The delivery delay clause (also known as a penalty clause in the event of default) is a term usually included in the contract that specifies a predetermined compensation amount that the contractor or seller must pay to the buyer for every day, week, or month of delay beyond the agreed delivery date. The purpose of the clause is twofold: -Compensatory: ...
Read more