Bookstore employee
€4,000
Insufficient technical and organisational measures to ensure information security
Дата на решението
19 юли 2022 г.
Орган
Spanish Data Protection Authority (aepd)
ES
Сектор
Industry and Commerce
Държава
ES
Право
GDPRСтатус
FINALОписание
The Spanish Data Protection Agency has imposed a fine of EUR 4,000 on an employee of a bookstore. An individual had filed a complaint with the DPA because he had received an invoice from another person containing that person's personal data. The employee had inadvertently sent the invoice to the wrong recipient.
Правни цитати
Art. 5 (1)Art. 32
Въпроси и нарушения
Insufficient technical and organisational measures to ensure information security