Support Centre

You have out of 5 free articles left for the month

Signup for a trial to access unlimited content.

Start Trial

Continue reading on DataGuidance with:

Free Member

Limited Articles

Create an account to continue accessing select articles, resources, and guidance notes.

Free Trial

Unlimited Access

Start your free trial to access unlimited articles, resources, guidance notes, and workspaces.

Greece: HDPA fines Municipality of Athens €5,000 for noncooperation

On February 22, 2024, the Hellenic Data Protection Authority (HDPA) published its Decision No. 1/2024, as issued on January 29, 2024, in which it imposed a fine of €5,000 on the Municipality of Athens (the Municipality) for violations of the General Data Protection Regulation (GDPR), following a questionnaire sent by the HDPA to selected public bodies.

Background to the HDPA's decision

In particular, the HDPA noted that the decision arose from the HDPA's participation in the European Data Protection Board's (EDPB) 2023 coordinated enforcement action on Data Protection Officers (DPOs), where the HDPA sent a questionnaire on the definition and the position of DPOs to selected public bodies, including the Municipality. Subsequently, the Municipality did not respond to the questionnaire and further communications sent by the HDPA in a timely manner, citing technical problems as the reason for the late response.

Findings of the HDPA

The HDPA found that the Municipality violated Article 31 of the GDPR regarding the cooperation of the controller with the supervisory authority.

Outcomes

As a result, the HDPA fined the Municipality €5,000 for the abovementioned violation.

You can read the press release here and the decision here, both only available in Greek.

Feedback