Compania Națională Poșta Română S.A.
€5,000
Insufficient legal basis for data processing
Datum odločitve
16. maj 2023
Organ
Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)
RO
Sektor
Transportation and Energy
Država
RO
Zakon
GDPRStatus
FINALOpis
The Romanian DPA has imposed a fine of EUR 5,000 on the Romanian Post (Compania Națională Poșta Română S.A.). During its investigation, the DPA found that the controller had processed personal data of employees without a valid legal basis.
Pravne navedbe
Art. 5 (1)Art. 5 (2)Art. 6 (1)
Vprašanja in kršitve
Insufficient legal basis for data processing