Raiffeisen Bank SA

€15,000

Insufficient technical and organisational measures to ensure information security

決定日期

2019年10月9日

權限

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)

RO

部門

Finance, Insurance and Consulting

國家

RO

法律

GDPR

狀態

FINAL

說明

Original fine summary: Raiffeisen Bank Romania carried out scoring assessments on the basis of personal data of individuals registered on the Vreau Credit platform provided by the platform's staff via WhatsApp and then returned the result to Vreau Credit using the same means of communication. Update: The fine was reduced from EUR 150,000 to EUR 15,000 following a court ruling in 2021 link

法律引文

Art. 32

問題與違規

Insufficient technical and organisational measures to ensure information security
檢視正式文件
返回罰款資料庫
上一個精細
Czech Data Protection Auhtority (UOOU) - Legal Per...
下一個精細
Data Protection Authority of Hamburg (HmbBfDI) - C...

保持最新的隱私權執法資訊

我們尊重您的隱私。每月一封電子郵件,無垃圾郵件,可隨時取消訂閱。