IRIDEX GROUP SALUBRIZARE SRL

€2,000

Insufficient technical and organisational measures to ensure information security

Decision Date

9 de maio de 2024

Authority

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)

RO

Sector

Not assigned

Country

RO

Law

GDPR

Status

FINAL

Description

The Romanian DPA has imposed a fine of EUR 2,000 on IRIDEX GROUP SALUBRIZARE SRL. The controller had sent an e-mail to customers without using the blind copy option, revealing the email addresses of all recipients to the other recipients.

Legal Citations

Art. 32 (1)Art. 32 (2)

Issues & Violations

Insufficient technical and organisational measures to ensure information security
View Official Document
Back to Fines Database
Previous Fine
Spanish Data Protection Authority (aepd) - DENTALC...
Next Fine
Data Protection Authority of Hamburg (HmbBfDI) - C...

Stay Updated on Privacy Enforcement

We respect your privacy. One email per month, no spam, unsubscribe anytime.