Bookstore employee
€4,000
Insufficient technical and organisational measures to ensure information security
Datum rozhodnutí
19. července 2022
Úřad
Spanish Data Protection Authority (aepd)
ES
Sektor
Industry and Commerce
Země
ES
Právo
GDPRStav
FINALPopis
The Spanish Data Protection Agency has imposed a fine of EUR 4,000 on an employee of a bookstore. An individual had filed a complaint with the DPA because he had received an invoice from another person containing that person's personal data. The employee had inadvertently sent the invoice to the wrong recipient.
Právní citace
Art. 5 (1)Art. 32
Problémy a porušení
Insufficient technical and organisational measures to ensure information security