Unita Turism Holding S.A.

€5,000

Insufficient technical and organisational measures to ensure information security

Decision Date

9 de setembro de 2025

Authority

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)

RO

Sector

Employment

Country

RO

Law

GDPR

Status

FINAL

Description

The Romanian DPA has imposed a fine of EUR 5,000 on Unita Turism Holding S.A. The controller did not implement adequate technical and organisational measures to ensure cybersecurity, resulting in a successful cyberattack.

Legal Citations

Art. 32 (1)

Issues & Violations

Insufficient technical and organisational measures to ensure information security
View Official Document
Back to Fines Database
Previous Fine
Deputy Data Protection Ombudsman - S-Pankki Oyj...
Next Fine
Data Protection Authority of Hamburg (HmbBfDI) - C...

Stay Updated on Privacy Enforcement

We respect your privacy. One email per month, no spam, unsubscribe anytime.