Corporación radiotelevisión espanola
€60,000
Insufficient technical and organisational measures to ensure information security
Дата на решението
19 ноември 2019 г.
Орган
Spanish Data Protection Authority (aepd)
ES
Сектор
Media, Telecoms and Broadcasting
Държава
ES
Право
GDPRСтатус
FINALОписание
CORPORACIÓN RADIOTELEVISIÓN ESPAÑOLA and the trade union have reported a security breach to the AEPD after six unencrypted USB sticks containing personal data were lost. The violation affected about 11,000 people, including identification data, employment data, data about criminal convictions and health data.
Правни цитати
Art. 32
Въпроси и нарушения
Insufficient technical and organisational measures to ensure information security