Compania Națională Poșta Română S.A.
€5,000
Insufficient legal basis for data processing
Dátum rozhodnutia
16. mája 2023
Úrad
Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)
RO
Sektor
Transportation and Energy
Krajina
RO
Právo
GDPRStav
FINALPopis
The Romanian DPA has imposed a fine of EUR 5,000 on the Romanian Post (Compania Națională Poșta Română S.A.). During its investigation, the DPA found that the controller had processed personal data of employees without a valid legal basis.
Právne citácie
Art. 5 (1)Art. 5 (2)Art. 6 (1)
Problémy a porušenia
Insufficient legal basis for data processing