Croatia's DPA fines debt collection agency over GDPR violations

Croatia's Personal Data Protection Agency fined debt collection agency EOS Matrix 5.47 million euros for alleged EU General Data Protection Regulation violations. A complaint filed with the AZOP in March claimed the agency processed the data of a large number of individuals without authorization, including 294 minors. Among its findings, the AZOP determined the agency processed personal data of nondebtors, processed data in a nontransparent way and recorded phone conversations without an established legal basis. Full story

https://iapp.org/news/a/croatias-dpa-fines-debt-collection-agency-over-gdpr-violations