Vodafone Romania S.A.
€5,000
Insufficient technical and organisational measures to ensure information security
Data della decisione
28 ottobre 2024
Autorità
Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)
RO
Settore
Media, Telecoms and Broadcasting
Paese
RO
Legge
GDPRStato
FINALDescrizione
The Romanian DPA fined Vodafone Romania S.A. EUR 5,000 for sending emails to different recipients without including them in the blind carbon copy (BCC) list. This resulted in the unauthorized disclosure of email addresses to other recipients.
Citazioni legali
Art. 32
Problemi e violazioni
Insufficient technical and organisational measures to ensure information security