RESTART ENERGY ONE S.A.

€25,000

Insufficient technical and organisational measures to ensure information security

Fecha de la decisión

26 de septiembre de 2023

Autoridad

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)

RO

Sector

Transportation and Energy

País

RO

Ley

GDPR

Estado

FINAL

Descripción

The Romanian DPA has imposed a fine of EUR 25,000 on RESTART ENERGY ONE S.A.. During its investigation, the DPA found that there existed a publicly accessible file on the controller's website containing personal data (name, surname, address, telephone numbers, email addresses, contract number and contract date) of at least 750 data subjects. The file was publicly accessible via a link generated by search engines for a period of approximately 2.5 years. The DPA concluded that the controller had failed to implement appropriate technical and organizational measures to protect personal data.

Citas legales

Art. 32 (1)Art. 32 (2)

Problemas e infracciones

Insufficient technical and organisational measures to ensure information security
Ver documento oficial
Volver a la base de datos de multas
Multa anterior
Spanish Data Protection Authority (aepd) - DIGI SP...
Siguiente multa
Data Protection Authority of Hamburg (HmbBfDI) - C...

Manténgase al día sobre la aplicación de las normas de protección de la intimidad

Respetamos su intimidad. Un correo electrónico al mes, sin spam, darse de baja en cualquier momento.