IDFINANCE Spain, S.L.
€3,000
Insufficient technical and organisational measures to ensure information security
결정 날짜
2021년 2월 1일
권한
Spanish Data Protection Authority (aepd)
ES
섹터
Finance, Insurance and Consulting
국가
ES
법률
GDPR상태
FINAL설명
The Spanish DPA (AEPD) imposed a fine of EUR 5,000 on IDFINANCE Spain S.L.. A person had received a debt collection email from IDFinance that contained a link for the payment of an invoice directly through the controller's website. Via the link, the person was able to view the personal data of another customer. The original fine of EUR 5,000 was reduced to EUR 3,000 due to immediate payment and admission of responsibility.
법적 인용
Art. 5 (1)
문제 및 위반 사항
Insufficient technical and organisational measures to ensure information security