2021
DOI: 10.1108/jmlc-11-2020-0128
|View full text |Cite
|
Sign up to set email alerts
|

Implementation of the personal data minimization principle in financial institutions: Lithuania’s case

Abstract: Purpose The purpose of this paper is to assess such processing of personal data for identification purposes from the point of view of the principle of data minimisation, as set out in the EU’s General Data Protection Regulation (GDPR) and examine whether the processing of personal data for these purposes can be considered proportionate, i.e. whether it is performed for the purposes defined and only as much as is necessary. Design/methodology/approach In this paper, the authors discuss and present the relevan… Show more

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...
1

Citation Types

0
1
0

Year Published

2024
2024
2024
2024

Publication Types

Select...
2

Relationship

0
2

Authors

Journals

citations
Cited by 2 publications
(1 citation statement)
references
References 2 publications
0
1
0
Order By: Relevance
“…At the same time, in line with the data minimization principle known from personal data protection law [27], the EBA ML/TF Risk Factors Guidelines indicate that where data which might be of importance for AML/CFT purposes is not available to AISPs and PISPs in the context of PSD2, the guidelines do not require that AISPs and PISPs proactively request such information (feedback on responses to Guideline 18). For occasional Payment Initiation Service transactions, the legal ground for collecting information about the end user is the Payment Initiation Service itself.…”
Section: Resultsmentioning
confidence: 99%
“…At the same time, in line with the data minimization principle known from personal data protection law [27], the EBA ML/TF Risk Factors Guidelines indicate that where data which might be of importance for AML/CFT purposes is not available to AISPs and PISPs in the context of PSD2, the guidelines do not require that AISPs and PISPs proactively request such information (feedback on responses to Guideline 18). For occasional Payment Initiation Service transactions, the legal ground for collecting information about the end user is the Payment Initiation Service itself.…”
Section: Resultsmentioning
confidence: 99%