Banca Comercială Română SA
€5,000
Insufficient technical and organisational measures to ensure information security
Datum rozhodnutí
5. května 2020
Úřad
Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)
RO
Sektor
Finance, Insurance and Consulting
Země
RO
Právo
GDPRStav
FINALPopis
The data protection authority finds that the company has not taken adequate technical and organisational measures to ensure an adequate level of information security. This applies in particular to the collection and transmission of copies of customers' identification documents via WhatsApp.
Právní citace
Art. 32
Problémy a porušení
Insufficient technical and organisational measures to ensure information security