Apă Canal Ilfov SA

€3,000

Insufficient technical and organisational measures to ensure information security

Decision Date

4 de janeiro de 2023

Authority

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)

RO

Sector

Industry and Commerce

Country

RO

Law

GDPR

Status

FINAL

Description

The Romanian DPA has imposed a fine of EUR 3,000 on Apă Canal Ilfov SA. The controller sent an e-mail with personal data to several recipients in an open distribution list. This made it possible for the recipients to view the e-mail addresses of all other recipients.

Legal Citations

Art. 32 (1)Art. 32 (2)Art. 32 (4)

Issues & Violations

Insufficient technical and organisational measures to ensure information security
View Official Document
Back to Fines Database
Previous Fine
Data Protection Authority of Ireland - Meta Platfo...
Next Fine
Data Protection Authority of Hamburg (HmbBfDI) - C...

Stay Updated on Privacy Enforcement

We respect your privacy. One email per month, no spam, unsubscribe anytime.