Natural person holding the position of General Secretary for a political party in Bucharest
Insufficient technical and organisational measures to ensure information security
決定日期
2021年3月4日
權限
Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)
RO
部門
Public Sector and Education
國家
RO
法律
GDPR狀態
FINAL說明
The Romanian DPA (ANSPDCP) imposed a fine in the amount of EUR 500 against a natural person holding the position of General Secretary for a political party in Bucharest. The controller had published a list on a social network, which contained personal data such as names, signatures, nationalities, dates of birth, postal addresses, of ten supporters of the party. The DPA found that the controller had failed to implement adequate technical and organizational measures to protect the processing of personal data. In addition, the controller had not sufficiently cooperated with the DPA in its investigation.