Vodafone Romania S.A.
€5,000
Insufficient technical and organisational measures to ensure information security
Datum odločitve
28. oktober 2024
Organ
Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)
RO
Sektor
Media, Telecoms and Broadcasting
Država
RO
Zakon
GDPRStatus
FINALOpis
The Romanian DPA fined Vodafone Romania S.A. EUR 5,000 for sending emails to different recipients without including them in the blind carbon copy (BCC) list. This resulted in the unauthorized disclosure of email addresses to other recipients.
Pravne navedbe
Art. 32
Vprašanja in kršitve
Insufficient technical and organisational measures to ensure information security