Unita Turism Holding S.A.
€5,000
Insufficient technical and organisational measures to ensure information security
Datum för beslut
9 september 2025
Myndighet
Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)
RO
Sektor
Employment
Land
RO
Lag
GDPRStatus
FINALBeskrivning
The Romanian DPA has imposed a fine of EUR 5,000 on Unita Turism Holding S.A. The controller did not implement adequate technical and organisational measures to ensure cybersecurity, resulting in a successful cyberattack.
Rättsliga hänvisningar
Art. 32 (1)
Frågor och överträdelser
Insufficient technical and organisational measures to ensure information security