Bookstore employee
€4,000
Insufficient technical and organisational measures to ensure information security
Дата прийняття рішення
19 липня 2022 р.
Влада
Spanish Data Protection Authority (aepd)
ES
Сектор
Industry and Commerce
Країна
ES
Право
GDPRСтатус
FINALОпис
The Spanish Data Protection Agency has imposed a fine of EUR 4,000 on an employee of a bookstore. An individual had filed a complaint with the DPA because he had received an invoice from another person containing that person's personal data. The employee had inadvertently sent the invoice to the wrong recipient.
Юридичні посилання
Art. 5 (1)Art. 32
Проблеми та порушення
Insufficient technical and organisational measures to ensure information security