Gdpr Data Protection - bank of ireland

Discussion in 'Banking, credit cards, etc' started by cmalone, 23 Nov 2018.

  1. cmalone

    cmalone Frequent Poster

    Posts:
    223
    has anyone made an GDPR/ Access Request under Data Protection Act to bank of ireland. The bank wrote had made multiple errors in operation of accounts.

    When I became suspicious , I decided to ask for data held. They immediately wrote to say they were closing accounts and those for my partner (unrelated accounts at different branches). They subsequently issued a few items of data (bank statements, my complaints, etc) and said nothing else existed.

    We complained to the FSP Ombudsman and cases are slowing progressing.

    After over 3 years , the Data Protection Commissioner has got bank to issue some obvious additional data held (phone calls, notes on accounts, etc.).

    Is this experience typical - did we do something wrong or is the unorthodox approach of BOI ?
     
  2. Jumpstartdublin

    Jumpstartdublin Frequent Poster

    Posts:
    208
    Unsure if Data Protection Commissioner has staff resources to follow up on personal complaints. I understand they are busy this year with GDPR information campaign etc
     
  3. cmalone

    cmalone Frequent Poster

    Posts:
    223
    The DPC Investigation resulted in significant amounts of additional data bring ‘found’.

    The bank also claimed that they had kept most of the account data on ‘post-it’ type notes and these were unavailable... which was different to what call centre staff confirmed that when one phoned and they read records of the bank’s systems and inter department emails, etc

    One wonders is this type of unorthodox conduct is common place ...
     
  4. DeeKie

    DeeKie Frequent Poster

    Posts:
    229
    Did you drop the complaint when the docs were found?
     
  5. cmalone

    cmalone Frequent Poster

    Posts:
    223
    Couldn’t drop case .., as the documentation, phone records etc were not complete. Should I drop the DPC case ?
     
  6. DeeKie

    DeeKie Frequent Poster

    Posts:
    229
    No
     
  7. cmalone

    cmalone Frequent Poster

    Posts:
    223
    The bank trips itself up with false reports to the DPC ... appears no sanctions in place and customer has to prove the bank’s responses to DPC investigator are incorrect at each stage .., nothing to stop Bank intentionally deleting important records. ...
     
  8. WhiteCoat

    WhiteCoat Registered User

    Posts:
    23
    Interesting - any way of finding out whether a bank, any bank, has ever been sanctioned in this regard? To me, it's as coincidental as their herd misunderstanding of trackers. I really don't trust banks!
     
  9. cmalone

    cmalone Frequent Poster

    Posts:
    223
    Sad that bank customers cannot just get all their personal data held without having to ‘beg’ for it ... and then the bank might ‘find’ additional data after a few years of denial when the DPC gets involved ...