Unknown

€15,400

Insufficient involvement of data protection officer

Fecha de la decisión

27 de octubre de 2021

Autoridad

National Commission for Data Protection (CNPD)

LU

Sector

Not assigned

País

CZ

Ley

GDPR

Estado

FINAL

Descripción

The Luxembourg DPA has imposed a fine of EUR 15,400 on a company. According to the DPA, the controller failed to involve the data protection officer in all matters related to the protection of personal data. In addition, contrary to the requirements of the GDPR, the data protection officer did not report directly to the highest management level; instead, there were two levels of hierarchy in between. Also, the controller did not have a data protection control plan in place to demonstrate that the data protection officer was performing their duties appropriately.

Citas legales

Art. 38 (1)Art. 39 (1)

Problemas e infracciones

Insufficient involvement of data protection officer
Ver documento oficial
Volver a la base de datos de multas
Multa anterior
Bulgarian Commission for Personal Data Protection ...
Siguiente multa
Data Protection Authority of Hamburg (HmbBfDI) - C...

Manténgase al día sobre la aplicación de las normas de protección de la intimidad

Respetamos su intimidad. Un correo electrónico al mes, sin spam, darse de baja en cualquier momento.