Funeda Sp. z o.o. company breached the provisions of the General Data Protection Regulation (GDPR) by not cooperating with the Personal Data Protection Office (UODO) in the scope of performing the supervisory authority’s tasks. Administrative fine of over PLN 22 000 (EUR 5 000) was imposed on the company.
The lack of cooperation consisted in the fact that the fined company did not provide access to all personal data and information necessary for the UODO to investigate the complaint about irregularities in the processing of the complainant’s personal data. As part of the administrative proceedings initiated to investigate the complaint filed, the Office asked the company to respond to the content of the complaint and to answer specific questions regarding the case.
The UODO called the company twice to provide explanations necessary for the examination of the case. Despite receiving the correspondence, the company has not replied to the letters sent to it so far. In connection with the failure to provide information in the case, the UODO initiated the proceedings in the matter to impose an administrative fine. The company, despite being correctly notified by the supervisory authority and instructed on its right to express its opinion on the collected evidence and materials and the submitted requests, also failed to take any action to clarify the matter. It should be mentioned that the Office made repeated attempts to contact the company by phone and e-mail based on the data on its website. The company has not contacted the Office to the date of the decision.
In the opinion of the UODO, the fine imposed is proportionate to the gravity of the breach. The fine will also fulfil a dissuasive function, as it will be a clear signal both to the company and to other entities that letters from the supervisory authority should not be ignored. Disregarding duties related to the cooperation with the supervisory authority, in particular impeding the access to information necessary for the performance of its tasks, constitutes a breach of great importance and as such is subject to financial sanctions.
