Corporación radiotelevisión espanola
€60,000
Insufficient technical and organisational measures to ensure information security
Dátum rozhodnutia
19. novembra 2019
Úrad
Spanish Data Protection Authority (aepd)
ES
Sektor
Media, Telecoms and Broadcasting
Krajina
ES
Právo
GDPRStav
FINALPopis
CORPORACIÓN RADIOTELEVISIÓN ESPAÑOLA and the trade union have reported a security breach to the AEPD after six unencrypted USB sticks containing personal data were lost. The violation affected about 11,000 people, including identification data, employment data, data about criminal convictions and health data.
Právne citácie
Art. 32
Problémy a porušenia
Insufficient technical and organisational measures to ensure information security