Unknown

€15,400

Insufficient involvement of data protection officer

Karar Tarihi

27 Ekim 2021

Otorite

National Commission for Data Protection (CNPD)

LU

Sektör

Not assigned

Ülke

CZ

Hukuk

GDPR

Durum

FINAL

Açıklama

The Luxembourg DPA has imposed a fine of EUR 15,400 on a company. According to the DPA, the controller failed to involve the data protection officer in all matters related to the protection of personal data. In addition, contrary to the requirements of the GDPR, the data protection officer did not report directly to the highest management level; instead, there were two levels of hierarchy in between. Also, the controller did not have a data protection control plan in place to demonstrate that the data protection officer was performing their duties appropriately.

Yasal Atıflar

Art. 38 (1)Art. 39 (1)

Sorunlar & İhlaller

Insufficient involvement of data protection officer
Resmi Belgeyi Görüntüle
Para Cezaları Veritabanına Geri Dön
Önceki İnce
Bulgarian Commission for Personal Data Protection ...
Sonraki İnce
Data Protection Authority of Hamburg (HmbBfDI) - C...

Gizlilik Uygulamasından Haberdar Olun

Gizliliğinize saygı duyuyoruz. Ayda bir e-posta, spam yok, istediğiniz zaman abonelikten çıkın.