The authority imposed a fine of 8 million euros on the company for violating the General Data Protection Regulation (GDPR), the “Salzburger Nachrichten” reported on Friday. “This decision is not final and Rewe International AG will take legal action against it,” a spokesman is quoted as saying in the “SN”. It is the second such punishment.
It was not until the summer of 2021 that the jö Bonus Club, which is a subsidiary of Rewe, was sentenced to a fine of 2 million euros – also not legally binding. The cause affected two million customers of the program, who had not been properly informed about the further use of their data, according to the allegations of the authority.
The group is opposed to the fact that Rewe (Adeg, Billa, BillaPlus, Bipa, Penny) should now also be held responsible for this. “Rewe International AG does not intervene in jö’s operational business, has not done so to date and can therefore not bear any responsibility for jö’s data processing activities,” the company said, according to “SN”. The jö Bonus Club acts as a separate company, legally and economically independent. In addition, no customer data was passed on to Rewe by jö.