SHARE
COPY LINK

DATA PROTECTION

Millions of bank card customers caught in data scandal

The bank data and shopping behaviour of up to 14 million customers in Germany has been systematically gathered and used to promote loyalty programmes, a media report said on Wednesday night.

Millions of bank card customers caught in data scandal
Photo: DPA

Broadcaster NDR reported that Germany’s biggest electronic bank card handler, Easycash, has matched information on account numbers and the use of cards at supermarkets or petrol stations with customer data and discount cards.

The extensive collection of data could then be analysed and used, without the customer’s knowledge or approval. NDR reported the company systematically mined the data and offered it to other firms for up to €5,000 for information on thousands of customers.

The company responsible is an Easycash subsidiary, Easycash Loyalty Solutions in Hamburg. The Hamburg consumer watchdog, Johannes Caspar, described the data abuse as a “new dimension” to the scandal that was first uncovered late last month.

“The customers transparently become consumers whose data is analysed without their knowing it,” he said.

Caspar announced an immediate and wide investigation. Easycash and its subsidiary declined to comment, according the NDR.

Easycash Loyalty Solutions looks after about 14 million card customers according to its own website.

DPA/The Local/dw

Member comments

Log in here to leave a comment.
Become a Member to leave a comment.

DATA PROTECTION

Norway to fine Grindr millions for illegal data sharing

Smartphone dating app Grindr faces a record 100-million-kroner (9.6-million-euro) fine in Norway for illegally sharing user data with third parties, the Norwegian Data Protection Authority said on Tuesday.

Norway to fine Grindr millions for illegal data sharing
File photo: AFP

Grindr, which claims to be “the world’s largest social networking app for gay, bi, trans, and queer people”, is accused of sharing its users’ GPS coordinates, user profile data and the fact that the user is on Grindr, for marketing purposes.

“Our preliminary conclusion is that Grindr has shared user data to a number of third parties without legal basis,” Data Protection Authority director general Bjørn Erik Thon said in a statement.

According to the authority, this violates the European Union’s GDPR, or data protection rules, on valid consent that were introduced in May 2018.

The authority therefore decided to notify Grindr that it will be fined around 10 percent of its global turnover, or about $10 million, an unprecedented fine in the Nordic country.

The Norwegian Consumer Council, which had filed the initial legal complaint against Grindr, hailed the announcement as a “historic victory for privacy.”

Grindr has until February 15th to challenge the decision.

The wrongdoing it is accused of took place before April 2020, when the app changed its user consent terms.

In January 2020, the Norwegian Consumer Council filed legal complaints against Grindr and five other apps, including Twitter-controlled MoPub, for violating personal data protection rules.

The other complaints are still being examined, the Data Protection Authority said.

READ ALSO: Norway consumer rights group accuses Tinder, Grindr of illegally sharing data

SHOW COMMENTS