Hamburg: HmbBfDI releases 2020 activity report
The Hamburg Commissioner for Data Protection and Freedom of Information ('HmbBfDI') released, on 25 February 2021, its 2020 activity report. In particular, the report highlights some of the key developments from 2020, including:
- data protection issues stemming from the COVID-19 pandemic, such as those related to recording contact tracing data and video conferencing systems;
- fine proceedings of €35.3 million issued against H&M Online Shop AB & Co. KG for violations of employee data protection;
- data transfers following the European Union's judgment in Data Protection Commissioner v. Facebook Ireland Limited, Maximillian Schrems (C-311/18);
- police access to databases containing personal data; and
- complaints regarding private individuals who have photographed or filmed other individuals on the street without their consent.
Furthermore, the report outlines that the HmbBfDI had received a total of 2,978 complaints in 2020 compared to 2,527 in 2019 and that the total number of reported data breaches had increased from 611 to 686 with the main cause stated as human error with 262 emails/postal items reportedly being sent to the wrong address. Notably, the report states that the number of reported data breaches resulting from systems being hacked has more than doubled from 74 to 156.