Vodafone Romania S.A.
€5,000
Insufficient technical and organisational measures to ensure information security
Ημερομηνία απόφασης
28 Οκτωβρίου 2024
Αρχή
Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)
RO
Τομέας
Media, Telecoms and Broadcasting
Χώρα
RO
Νόμος
GDPRΚατάσταση
FINALΠεριγραφή
The Romanian DPA fined Vodafone Romania S.A. EUR 5,000 for sending emails to different recipients without including them in the blind carbon copy (BCC) list. This resulted in the unauthorized disclosure of email addresses to other recipients.
Νομικές παραπομπές
Art. 32
Θέματα & Παραβάσεις
Insufficient technical and organisational measures to ensure information security