AVG

The Netherlands: DPA imposes EUR 830,00 fine for access request fees

On the 6th of July 2020, the Dutch Data Protection Authority (Autoriteit Persoonsgegevens, “Dutch DPA“) published its decision to impose a fine of 830,000 EUR on Stichting Bureau Krediet Registratie (BKR). BKR keeps an electronic file of the loans and debts people have in the Netherlands, stored in a central database. Companies like financial institutions …

The Netherlands: DPA imposes EUR 830,00 fine for access request fees Read More »

The Netherlands: Fine imposed on employer processing fingerprints of employees

By Stephanie Reinders Folmer and Richard van Schaik The Dutch Data Protection Authority (Autoriteit Persoonsgegevens, “Dutch DPA“) issued a fine of EUR 725,000 for a company unlawfully processing fingerprints of its employees for attendance and time registration purposes. Under the GDPR, biometric data (e.g. fingerprints) processed for the purpose of identifying a natural person are considered a …

The Netherlands: Fine imposed on employer processing fingerprints of employees Read More »

The Netherlands – First GDPR fine imposed: EUR 460,000

Today, the Dutch Data Protection Authority (Autoriteit Persoonsgegevens, “Dutch DPA“) issued its first GDPR-fine of EUR 460,000. The fine is imposed on the Dutch Haga Hospital for having an insufficient internal security of patient records. The fact that the first GDPR-fine was imposed on a hospital isn’t a complete surprise, as already in December 2018, …

The Netherlands – First GDPR fine imposed: EUR 460,000 Read More »

The Netherlands – DPA reiterates strict position on alcohol, drug and medicine testing   

The Dutch Data Protection Authority published an article in which it again affirms that testing employees on alcohol, drugs or medicines can only be performed if there is a specific legal basis to carry out such tests. Earlier, the Dutch DPA gave an explanation on some Q&A’s on this subject. The Dutch DPA states that …

The Netherlands – DPA reiterates strict position on alcohol, drug and medicine testing    Read More »

The Netherlands: S.A. states that websites must be accessible at all times; cookie wall not allowed

On 7 March 2019, the Dutch Supervisory Authority (“S.A.”) created quite some buzz in the online Dutch (advertising) industry: websites that only give visitors access to their site if they agree to tracking cookies (or similar technologies) do not comply with the GDPR. This also means that the so-called cookie walls that are placed on  …

The Netherlands: S.A. states that websites must be accessible at all times; cookie wall not allowed Read More »

THE NETHERLANDS: Dutch SA initiates exploratory investigation into DPAs

The Dutch Supervisory Authority (Autoriteit Persoonsgegevens, “AP”) recently communicated a press release stating that it reached out to 30 organizations to request information relating to their data processing agreements (DPAs).  Organizations that have been contacted are companies in the media, energy and trade sectors. The AP has requested, among other things, what agreements organizations have …

THE NETHERLANDS: Dutch SA initiates exploratory investigation into DPAs Read More »

The Netherlands: Health sector once again on the radar of DPA

The Dutch Data Protection Authority (Autoriteit Persoonsgegevens,  “Dutch DPA“) previously stated that it shall focus its enforcement actions on the public and health sector, and seems to act upon its words. Just a few months after the Dutch DPA inspected more than 100 hospitals and health insurers on whether they comply with the obligation to …

The Netherlands: Health sector once again on the radar of DPA Read More »