Bookstore employee
€4,000
Insufficient technical and organisational measures to ensure information security
Päätöspäivä
19. heinäkuuta 2022
Viranomainen
Spanish Data Protection Authority (aepd)
ES
Ala
Industry and Commerce
Maa
ES
Laki
GDPRTila
FINALKuvaus
The Spanish Data Protection Agency has imposed a fine of EUR 4,000 on an employee of a bookstore. An individual had filed a complaint with the DPA because he had received an invoice from another person containing that person's personal data. The employee had inadvertently sent the invoice to the wrong recipient.
Oikeudelliset viittaukset
Art. 5 (1)Art. 32
Asiat ja rikkomukset
Insufficient technical and organisational measures to ensure information security