Global Business Travel Spain SLU

€5,000

Insufficient technical and organisational measures to ensure information security

Karar Tarihi

10 Temmuz 2020

Otorite

Spanish Data Protection Authority (aepd)

ES

Sektör

Transportation and Energy

Ülke

ES

Hukuk

GDPR

Durum

FINAL

Açıklama

The fine was preceded by an employee's access to health data of a person concerned. In the course of its investigations, the Data Protection Authority found that Global Business Travel Spain, as data controller, had infringed Article 32(2) and (4) of the GDPR by failing to take adequate technical and organisational measures to protect the data from unauthorised disclosure.

Yasal Atıflar

Art. 32

Sorunlar & İhlaller

Insufficient technical and organisational measures to ensure information security
Resmi Belgeyi Görüntüle
Para Cezaları Veritabanına Geri Dön
Önceki İnce
Spanish Data Protection Authority (aepd) - Vodafon...
Sonraki İnce
Data Protection Authority of Hamburg (HmbBfDI) - C...

Gizlilik Uygulamasından Haberdar Olun

Gizliliğinize saygı duyuyoruz. Ayda bir e-posta, spam yok, istediğiniz zaman abonelikten çıkın.