Gdpr Data Protection - bank of ireland

C

cmalone

Registered User
Messages
460
has anyone made an GDPR/ Access Request under Data Protection Act to bank of ireland. The bank wrote had made multiple errors in operation of accounts.

When I became suspicious , I decided to ask for data held. They immediately wrote to say they were closing accounts and those for my partner (unrelated accounts at different branches). They subsequently issued a few items of data (bank statements, my complaints, etc) and said nothing else existed.

We complained to the FSP Ombudsman and cases are slowing progressing.

After over 3 years , the Data Protection Commissioner has got bank to issue some obvious additional data held (phone calls, notes on accounts, etc.).

Is this experience typical - did we do something wrong or is the unorthodox approach of BOI ?
 
Unsure if Data Protection Commissioner has staff resources to follow up on personal complaints. I understand they are busy this year with GDPR information campaign etc
 
The DPC Investigation resulted in significant amounts of additional data bring ‘found’.

The bank also claimed that they had kept most of the account data on ‘post-it’ type notes and these were unavailable... which was different to what call centre staff confirmed that when one phoned and they read records of the bank’s systems and inter department emails, etc

One wonders is this type of unorthodox conduct is common place ...
 
Couldn’t drop case .., as the documentation, phone records etc were not complete. Should I drop the DPC case ?
 
The bank trips itself up with false reports to the DPC ... appears no sanctions in place and customer has to prove the bank’s responses to DPC investigator are incorrect at each stage .., nothing to stop Bank intentionally deleting important records. ...
 
cmalone said:
The bank trips itself up with false reports to the DPC ... appears no sanctions in place and customer has to prove the bank’s responses to DPC investigator are incorrect at each stage .., nothing to stop Bank intentionally deleting important records. ...
Click to expand...

Interesting - any way of finding out whether a bank, any bank, has ever been sanctioned in this regard? To me, it's as coincidental as their herd misunderstanding of trackers. I really don't trust banks!
 
Sad that bank customers cannot just get all their personal data held without having to ‘beg’ for it ... and then the bank might ‘find’ additional data after a few years of denial when the DPC gets involved ...
 
You must log in or register to reply here.
Back
Top