SC Cntar Tarom SA
€5,000
Insufficient technical and organisational measures to ensure information security
Sprendimo priėmimo data
2020 m. liepos 27 d.
Institucija
Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)
RO
Sektorius
Industry and Commerce
Šalis
RO
Teisė
GDPRStatusas
FINALAprašymas
Unauthorised disclosure of the data of five Tarom passengers due to inadequate technical and organisational measures for secure data processing. Among other things, the company was required to take corrective action, including training its employees and conducting risk assessment procedures.
Teisinės citatos
Art. 32
Problemos ir pažeidimai
Insufficient technical and organisational measures to ensure information security