Bookstore employee
€4,000
Insufficient technical and organisational measures to ensure information security
Дата принятия решения
19 июля 2022 г.
Авторитет
Spanish Data Protection Authority (aepd)
ES
Сектор
Industry and Commerce
Страна
ES
Закон
GDPRСтатус
FINALОписание
The Spanish Data Protection Agency has imposed a fine of EUR 4,000 on an employee of a bookstore. An individual had filed a complaint with the DPA because he had received an invoice from another person containing that person's personal data. The employee had inadvertently sent the invoice to the wrong recipient.
Юридические цитаты
Art. 5 (1)Art. 32
Проблемы и нарушения
Insufficient technical and organisational measures to ensure information security