Alianța pentru Unirea Românilor
€10,000
Non-compliance with general data processing principles
決定日期
2023年3月15日
權限
Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)
RO
部門
Individuals and Private Associations
國家
RO
法律
GDPR狀態
FINAL說明
The Romanian DPA imposed a fine of EUR 10,000 on Alianța pentru Unirea Românilor. During its investigation, the DPA found that the controller collected personal data on its website without informing the data subjects and without meeting the conditions for the lawfulness of the processing. The DPA also found that the controller collected data such as surname, first name, address, ID card number, etc. not only on its website but also through various forms to be filled in. The DPA considered this to be a violation of the principle of data minimization.
法律引文
Art. 5 (1)Art. 5 (2)
問題與違規
Non-compliance with general data processing principles