Colombia: SIC fines Banco de Bogotá COP 351M for unauthorised use of personal data
The Colombian data protection authority ('SIC') announced, on 3 November 2020, that it had fined Banco de Bogotá COP 351,120,627 (approx. €77,530) for using, without authorisation, the personal data of a person who was not a customer, in violation of the provisions of Statutory Law No. 1581 of 2012 (October 17) Which Issues General Provisions for the Protection of Personal Data and Decree No. 1074 of 2015. In particular, SIC noted that the complainant alleged that, despite not being a client of Banco de Bogotá, she had been the subject of a series of threatening and intimidating charges through telephone calls and text messages as her personal data had been included as a reference in a credit application, and that she had not authorised the bank to use her information to carry out the collection of a third party's portfolio.