Compania Națională Poșta Română S.A.
€5,000
Insufficient legal basis for data processing
Data della decisione
16 maggio 2023
Autorità
Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)
RO
Settore
Transportation and Energy
Paese
RO
Legge
GDPRStato
FINALDescrizione
The Romanian DPA has imposed a fine of EUR 5,000 on the Romanian Post (Compania Națională Poșta Română S.A.). During its investigation, the DPA found that the controller had processed personal data of employees without a valid legal basis.
Citazioni legali
Art. 5 (1)Art. 5 (2)Art. 6 (1)
Problemi e violazioni
Insufficient legal basis for data processing