Partidul Uniunea Salvați România

€4,000

Insufficient technical and organisational measures to ensure information security

Data decyzji

15 marca 2023

Władza

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)

RO

Sektor

Individuals and Private Associations

Kraj

RO

Prawo

GDPR

Status

FINAL

Opis

The Romanian DPA has fined the Partidul Uniunea Salvați România party EUR 4,000. The controller had suffered a phishing attack in which the attackers gained unauthorized access to personal data such as first name, last name, email, phone number, as well as data on the political affiliation of the data subjects. The DPA found that the controller had failed to implement adequate technical and organizational measures such as data encryption to protect personal data, which facilitated such an attack.

Cytaty prawne

Art. 32 (1)Art. 32 (2)

Problemy i naruszenia

Insufficient technical and organisational measures to ensure information security
Zobacz oficjalny dokument
Powrót do bazy danych grzywien
Previous Fine
Romanian National Supervisory Authority for Person...
Next Fine
Data Protection Authority of Hamburg (HmbBfDI) - C...

Bądź na bieżąco z egzekwowaniem przepisów dotyczących prywatności

Szanujemy Twoją prywatność. Jeden e-mail miesięcznie, bez spamu, zrezygnuj z subskrypcji w dowolnym momencie.