Compania Națională Poșta Română S.A.
€5,000
Insufficient legal basis for data processing
Datum rozhodnutí
16. května 2023
Úřad
Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)
RO
Sektor
Transportation and Energy
Země
RO
Právo
GDPRStav
FINALPopis
The Romanian DPA has imposed a fine of EUR 5,000 on the Romanian Post (Compania Națională Poșta Română S.A.). During its investigation, the DPA found that the controller had processed personal data of employees without a valid legal basis.
Právní citace
Art. 5 (1)Art. 5 (2)Art. 6 (1)
Problémy a porušení
Insufficient legal basis for data processing