AI in the Banking Sector: Lessons from the Schufa Case

Plakolli-Kasumi, Luljeta

doi:10.15290/bsp.2025.30.03.10

Abstract

The advent of Artificial Intelligence (AI) has opened many opportunities and, equally, has brought many challenges. This is also true for the banking sector, as the Schufa case attests. The purpose of this paper is to examine the CJEU’s decision in the Schufa case regarding AI use within the banking sector and its legal implications. This case questions recent practices concerning credit scoring and demands more robust protection of individual rights and a more accountable use of AI in the financial sector. Th e ongoing dependence of banks on automated decision-making to assess the creditworthiness of their clients raises important questions about transparency and fairness regarding the outcomes of such assessments. Th e paper offers an analysis of the GDPR, namely Article 22(1), and the criteria for automated decision-making clarified in the Schufa case, particularly in situations that fall outside the scope of the GDPR.

References

Abrams, M., & Goldstein, L. A. (2023). CJEU case in SCHUFA has far reaching implications beyond credit scoring: Policy analysis. The Information Accountability Foundation. https://www.information-accountability.org/_files/ugd/ffea53_5c4ae2a7dc1a49248fcc331accf50721.pdf.
Search in Google Scholar Back to article
Agencia Española Protección Datos (AEPD). (2024, 4 March). Evaluating human intervention in automated decisions. https://shorturl.at/Mgi6l
Search in Google Scholar Back to article
Amnesty International. (2021, 25 October). Dutch childcare benefit scandal an urgent wake-up call to ban racist algorithms. https://shorturl.at/RnZ7M
Search in Google Scholar Back to article
Ananya. (2023, 7 September). Algorithms are making important decisions: What could possibly go wrong? Scientific American. https://www.scientificamerican.com/article/algorithms-are-making-important-decisions-what-could-possibly-go-wrong/
Search in Google Scholar Back to article
Balasubramaniam, N., Kauppinen, M., Rannisto, A., Hiekkanen, K., & Kujala, S. (2023). Transparency and explainability of AI systems: From ethical guidelines to requirements. Information and Software Technology, 159, 1–15.
Search in Google Scholar Back to article
Bertrand, J., & Klein, P. O. (2021). Creditor information registries and relationship lending. International Review of Law and Economics, 65, 1–43.
Search in Google Scholar Back to article
Binns, R., & Veale, M. (2021). Is that your final decision? Multi-stage profiling, selective effects, and Article 22 of the GDPR. International Data Privacy Law, 11(4), 319–332.
Search in Google Scholar Back to article
Boardman, R., & Lölfing, N. (2023, December 19). Key takeaways from the CJEU’s recent automated decision-making rulings: Opinion. IAPP. https://shorturl.at/rGQhY
Search in Google Scholar Back to article
Boyer, J. (2024). The future of credit: AI or human judgment? EmildAI. https://shorturl.at/2TeSi
Search in Google Scholar Back to article
Çani, E. M., & Mazelliu, A. (2025). Navigating the algorithmic shift and the legal implications of artificial intelligence in Albania’s public administration. Italian Journal of Public Law, 17(2), 496–527.
Search in Google Scholar Back to article
Cariaga, V. (2024, 25 April). Artificial intelligence based credit scoring: How AI could set your credit score. Yahoo Finance. https://shorturl.at/BJpts
Search in Google Scholar Back to article
Centre for Information Policy Leadership. (2024). Decoding responsibility in the era of automated decisions: Understanding the implications of the CJEU’s SCHUFA judgment. Hunton Andrews Kurth.
Search in Google Scholar Back to article
Clark, J., & Grentzenberg, V. (2023, December 13). EU: Significant new CJEU decision on automated decision-making. DLA Piper. https://shorturl.at/XLpCo
Search in Google Scholar Back to article
Council of Europe. (2016). Study the human rights dimensions of automated data processing techniques (in particular algorithms) and possible regulatory implications., 4. https://rm.coe.int/study-on-algorithmes-final-version/1680770cbc
Search in Google Scholar Back to article
Dastin, J. (2018). Insight – Amazon scraps secret AI recruiting tool that showed bias against women. Reuters. https://shorturl.at/xKxJI
Search in Google Scholar Back to article
De Moor, L., Luitel, P., Sercu, P., & Vanpee, R. (2018). Subjectivity in sovereign credit ratings. Journal of Banking and Finance, 88, 366–392.
Search in Google Scholar Back to article
Ettorre, F. P. (2022, 14 February). The right to contest automated decisions. The Digital Constitutionalist. https://digi-con.org/the-right-to-contest-automated-decisions/
Search in Google Scholar Back to article
Ettorre, F. P. (2023, 17 March). Is credit scoring an automated decision? The opinion of the AG Pikamäe in the case C-634/21. The Digital Constitutionalist. https://goto.now/NCrGd
Search in Google Scholar Back to article
European Union. (2016, 27 April). Regulation (EU) 2016/679 of the European Parliament and of the Council on the Protection of Natural Persons with Regard to the Processing of Personal Data and on the Free Movement of Such Data, and Repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance).OJ L 119, 4.5.2016, p. 1–88.
Search in Google Scholar Back to article
Fares, O. H., Butt, I., & Lee, S. H. M. (2022). Utilisation of artificial intelligence in the banking sector: A systemic literature review. Journal of Financial Services Marketing, 28, 835–852.
Search in Google Scholar Back to article
Farishy, R. (2023). The use of artificial intelligence in banking industry. International Journal of Social Service and Research, 3(7), 1724–1731.
Search in Google Scholar Back to article
Gavrila, A. R. (2024). Digitalization in banking: Navigating the effects of automated decision-making on customer experience. Proceedings of the International Conference on Business Excellence, 18(1), 1413–1424.
Search in Google Scholar Back to article
Heaven, W. D. (2021, 17 June). Bias is not the only problem with credit scores – and no, AI cannot help. MIT Technology Review. https://goto.now/NK5H1
Search in Google Scholar Back to article
Hughes, T. (2019, May 17). Human versus machine: The pros and cons of AI in credit. Global Association of Risk Professionals. https://shorturl.at/Or4LJ
Search in Google Scholar Back to article
Hurley, M., & Adebayo, J. (2016). Credit scoring in the era of big data. Yale Journal of Law and Technology, 18, 148–216.
Search in Google Scholar Back to article
Jain, P. (2024). Research paper on the impact of artificial intelligence on the banking sector. Amity University Noida – Amity Law School. https://ssrn.com/abstract=4907776
Search in Google Scholar Back to article
Jiang, J., Liao, L., Lu, X., Wang Z., & Xiang, H. (2021). Deciphering big data in consumer credit evaluation. Journal of Empirical Finance, 62, 28–45.
Search in Google Scholar Back to article
Judgment of the CJEU of 7 December 2023 on the case of OQ v. Land Hessen, intervener Schufa Holding, A. G., C634/21, ECLI:EU:C:2023:957.
Search in Google Scholar Back to article
Judgment of the Court of Amsterdam of 4 April 2023 on the case of The Netherlands v UBER B. V. ??, C/13/692003/HA RK 20–302.
Search in Google Scholar Back to article
Judgment of the Court of Amsterdam of 24 February 2021 on the case of XXX, Rb. Amsterdam, C/13/696010/HA ZA 21–81.
Search in Google Scholar Back to article
Kolleshi, M., & Golemi, E. (2024). Impact of artificial intelligence on the Albanian banking system. Interdisciplinary Journal of Research and Development, 11(2), 75–82.
Search in Google Scholar Back to article
Kozak, S., & Golnik, B. (2020). Migration of the banking sector to digital banking in Poland. Economic and Regional Studies, 13(3), 284–294.
Search in Google Scholar Back to article
Kuner C., Bygrave, L. A., & Docksey, C. (Eds.). (2021). The EU General Data Protection Regulation: A commentary. Oxford University Press.
Search in Google Scholar Back to article
Nan Nijang, C., & Novik, N. (2021, 10 August). Leveraging big data and machine learning in credit reporting. World Bank Blogs. https://goto.now/gsUfo
Search in Google Scholar Back to article
Narang, A., Vashisht, P., & Bajaj, B. (2024). Artificial intelligence in banking and finance. International Journal of Innovative Research in Computer Science and Technology, 12(2), 130–134.
Search in Google Scholar Back to article
Opinion of Advocate General Pikamae of 16 March 2023 on the case of OQ v. Land Hessen, intervener Schufa Holding, A. G., C634/21, ECLI:EU:C:2023:957.
Search in Google Scholar Back to article
Óskarsdóttir, M., Bravob, C., Sarrautee, C., Vanthienenc, J., & Baesensc, B. (2019). The value of big data for credit scoring: Enhancing financial inclusion using mobile phone data and social network analytics. Applied Soft Computing, 74, 26–39.
Search in Google Scholar Back to article
Pery, A., & Simon, M. (2024, January). International data privacy compliance, professional perspective – GDPR curbs use of AI via Article 22 decision. Bloomberg Law. https://shorturl.at/b1658
Search in Google Scholar Back to article
Polireddi, N. S. A. (2024). An effective role of artificial intelligence and machine learning in the banking sector. Measurement: Sensors, 33, 1–9.
Search in Google Scholar Back to article
Rebelo, D. M., & Pacheco de Andrade, F. (2024). Schufa’s case C-634/21 on ADM: The ‘lender’ quest for GDPR-friendly scoring has not been settled yet! JusGov Research Paper Series, no. 2024–2023.
Search in Google Scholar Back to article
Rejmaniak, R. (2021). Bias in artificial intelligence systems. Bialystok Legal Studies, 26(3), 25–42.
Search in Google Scholar Back to article
Shao, C. (2024, 27 August). Schufa II case: Further insights on automated credit scoring. Information Governance Services. https://shorturl.at/JK8aO
Search in Google Scholar Back to article
Silveira, A. (2023, April 10). Finally, the ECJ is interpreting Article 22 GDPR (on individual decisions based solely on automated processing, including profiling). Unio EU Law Journal. https://shorturl.at/xvjUj
Search in Google Scholar Back to article
Srivastava, S. (2024, 26 September). AI in banking – how artificial intelligence is used in banks. Appinventiv. https://appinventiv.com/blog/ai-in-banking/
Search in Google Scholar Back to article
Stefanski, K., & Zywolewska, K. (2024). Lack of transparency in algorithmic management of workers and trade unions’ right to information: European and Polish perspectives. Bialystok Law Studies, 29(2), 53–63.
Search in Google Scholar Back to article
Tabaku, E., Duci, E., Kapciu, R., & Kosova, A. M. (2025). Exploring the impact of artificial intelligence in banking: A case study on the integration of virtual assistants in customer service. International Research Journal of Modernisation in Engineering Technology and Science, 7(1), 4177–4183. https://www.doi.org/10.56726/IRJMETS66700
Search in Google Scholar Back to article
Tosoni, L. (2021). The right to object to automated individual decisions: Resolving the ambiguity of Article 22(1) of the General Data Protection Regulation. International Data Privacy Law, 11(2), 145–162.
Search in Google Scholar Back to article
Vaassen, B. (2022). AI, opacity, and personal autonomy. Philosophy and Technology, 35(88), 1–20.
Search in Google Scholar Back to article
Vidal, M. F., & Barbon, F. (2019). Credit scoring in financial inclusion: How to use advanced analytics to build credit-scoring models that increase access. Technical guide. Consultative Group to Assist the Poor (CGAP)/World Bank.
Search in Google Scholar Back to article
Vidal, M. F., & Menajovsky, J. (2019, 5 September). Algorithm bias in credit scoring: What’s inside the black box? CGAP. https://goto.now/oPTBu
Search in Google Scholar Back to article
Woodruff, A., Anderson, Y. A., Armstrong, K. J., Gkiza, M., Jennings, J., Moessner, C., Viégas, F., Wattenberg, M., Webb, L., Wrede, F., & Kelley, P. G. (2020). ‘A cold, technical decision-maker’: Can AI provide explainability, negotiability, and humanity? ArXiv Abs, 2012.00874, 1–23.
Search in Google Scholar Back to article
World Bank. (2019). Credit scoring approaches guidelines. The World Bank Group.
Search in Google Scholar Back to article
Zagha, N. S. (2024, 25 February). Artificial intelligence real use cases for credit scoring in banks and fintech firms. LinkedIn. https://goto.now/oMpOG
Search in Google Scholar Back to article

AI in the Banking Sector: Lessons from the Schufa Case

Abstract

Paradigm

My account