Tehnoplus Industry SRL

€5,000

Non-compliance with general data processing principles

Decision Date

23 de março de 2023

Authority

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)

RO

Sector

Employment

Country

RO

Law

GDPR

Status

FINAL

Description

The Romanian DPA has imposed a fine of EUR 5,000 on Tehnoplus Industry SRL. An employee of the company had filed a complaint with the DPA because the controller had installed a GPS system in their company vehicle for the purpose of monitoring the vehicle without providing them with sufficient information about such installation. During its investigation, the DPA also found that the controller was processing the GPS data outside working hours and for purposes other than originally intended. The DPA considered this to be a violation of the principle of data minimization. In addition, the controller was unable to prove that it did not store the data for longer than legally permitted.

Legal Citations

Art. 5 (1)Art. 5 (2)Art. 6

Issues & Violations

Non-compliance with general data processing principles
View Official Document
Back to Fines Database
Previous Fine
Spanish Data Protection Authority (aepd) - UNIDAD ...
Next Fine
Data Protection Authority of Hamburg (HmbBfDI) - C...

Stay Updated on Privacy Enforcement

We respect your privacy. One email per month, no spam, unsubscribe anytime.