Experian fined for GDPR violations in the Netherlands

First reported

19.10.2025 17:24

Last updated

20.10.2025 18:00

2 unique sources, 2 articles

Summary

Hide ▲

Experian Netherlands was fined EUR 2.7 million ($3.2 million) for GDPR violations involving the mass collection of personal data without proper consent or notification. The Dutch Data Protection Authority (AP) found that Experian improperly collected and used personal data from various public and private sources to build credit scores, affecting individuals' financial transactions and services. The AP launched an investigation after receiving consumer complaints about unusually high deposits or denied installment plans. Experian has ceased operations in the Netherlands and will delete its database of personal data by the end of the year. The regulator determined that Experian's credit scores, used by telecom companies, energy suppliers, and online retailers, played a role in these decisions. The fine is considered surprisingly mild, and further legal action, including private lawsuits, is likely.

Timeline

19.10.2025 17:24 2 articles · 1d ago

Experian fined EUR 2.7 million for GDPR violations in the Netherlands
The Dutch Data Protection Authority (AP) launched an investigation after receiving consumer complaints about unusually high deposits or denied installment plans. The regulator determined that Experian's credit scores, used by telecom companies, energy suppliers, and online retailers, played a role in these decisions. The fine is considered surprisingly mild, and further legal action, including private lawsuits, is likely.
Show sources

Experian fined $3.2 million for mass-collecting personal data — www.bleepingcomputer.com — 19.10.2025 17:24

Experian Fined €2.7m For GDPR Breach in Netherlands — www.infosecurity-magazine.com — 20.10.2025 18:00
Open in new tab

Information Snippets

Experian Netherlands was fined EUR 2.7 million ($3.2 million) for GDPR violations.
First reported: 19.10.2025 17:24

2 sources, 2 articles
Show sources
- Experian fined $3.2 million for mass-collecting personal data — www.bleepingcomputer.com — 19.10.2025 17:24
- Experian Fined €2.7m For GDPR Breach in Netherlands — www.infosecurity-magazine.com — 20.10.2025 18:00
Experian collected personal data from multiple public and private sources without informing individuals.
First reported: 19.10.2025 17:24

2 sources, 2 articles
Show sources
- Experian fined $3.2 million for mass-collecting personal data — www.bleepingcomputer.com — 19.10.2025 17:24
- Experian Fined €2.7m For GDPR Breach in Netherlands — www.infosecurity-magazine.com — 20.10.2025 18:00
The data was used to build credit scores that influenced financial transactions and services.
First reported: 19.10.2025 17:24

2 sources, 2 articles
Show sources
- Experian fined $3.2 million for mass-collecting personal data — www.bleepingcomputer.com — 19.10.2025 17:24
- Experian Fined €2.7m For GDPR Breach in Netherlands — www.infosecurity-magazine.com — 20.10.2025 18:00
Experian failed to obtain consent and justify the need for collecting personal data.
First reported: 19.10.2025 17:24

2 sources, 2 articles
Show sources
- Experian fined $3.2 million for mass-collecting personal data — www.bleepingcomputer.com — 19.10.2025 17:24
- Experian Fined €2.7m For GDPR Breach in Netherlands — www.infosecurity-magazine.com — 20.10.2025 18:00
Experian has ceased operations in the Netherlands and will delete its database of personal data by the end of the year.
First reported: 19.10.2025 17:24

2 sources, 2 articles
Show sources
- Experian fined $3.2 million for mass-collecting personal data — www.bleepingcomputer.com — 19.10.2025 17:24
- Experian Fined €2.7m For GDPR Breach in Netherlands — www.infosecurity-magazine.com — 20.10.2025 18:00
The Dutch Data Protection Authority (AP) launched an investigation after receiving consumer complaints about unusually high deposits or denied installment plans.
First reported: 20.10.2025 18:00

1 source, 1 article
Show sources
- Experian Fined €2.7m For GDPR Breach in Netherlands — www.infosecurity-magazine.com — 20.10.2025 18:00
Experian's credit scores were used by telecom companies, energy suppliers, and online retailers to determine contract terms or deposit amounts.
First reported: 20.10.2025 18:00

1 source, 1 article
Show sources
- Experian Fined €2.7m For GDPR Breach in Netherlands — www.infosecurity-magazine.com — 20.10.2025 18:00
Experian obtained data from sources including the Chamber of Commerce trade register and telecom and energy firms that sold customer information.
First reported: 20.10.2025 18:00

1 source, 1 article
Show sources
- Experian Fined €2.7m For GDPR Breach in Netherlands — www.infosecurity-magazine.com — 20.10.2025 18:00
The regulator concluded that Experian could not justify the scope of the information collected or the necessity of using it.
First reported: 20.10.2025 18:00

1 source, 1 article
Show sources
- Experian Fined €2.7m For GDPR Breach in Netherlands — www.infosecurity-magazine.com — 20.10.2025 18:00
Experian's creditworthiness reports included information such as payment behavior, outstanding debts, and bankruptcies.
First reported: 20.10.2025 18:00

1 source, 1 article
Show sources
- Experian Fined €2.7m For GDPR Breach in Netherlands — www.infosecurity-magazine.com — 20.10.2025 18:00
Experian acknowledged the violations and stated it would not appeal the fine.
First reported: 20.10.2025 18:00

1 source, 1 article
Show sources
- Experian Fined €2.7m For GDPR Breach in Netherlands — www.infosecurity-magazine.com — 20.10.2025 18:00
The fine is considered surprisingly mild, and further legal action, including private lawsuits, is likely.
First reported: 20.10.2025 18:00

1 source, 1 article
Show sources
- Experian Fined €2.7m For GDPR Breach in Netherlands — www.infosecurity-magazine.com — 20.10.2025 18:00

Summary

Timeline

Experian fined EUR 2.7 million for GDPR violations in the Netherlands

Information Snippets