SC Cntar Tarom SA
€5,000
Insufficient technical and organisational measures to ensure information security
Lēmuma datums
2020. gada 27. jūlijs
Iestāde
Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)
RO
Nozare
Industry and Commerce
Valsts
RO
Likums
GDPRStatuss
FINALApraksts
Unauthorised disclosure of the data of five Tarom passengers due to inadequate technical and organisational measures for secure data processing. Among other things, the company was required to take corrective action, including training its employees and conducting risk assessment procedures.
Juridiskās atsauces
Art. 32
Jautājumi un pārkāpumi
Insufficient technical and organisational measures to ensure information security