KEPIDES
€6,000
Insufficient technical and organisational measures to ensure information security
決定日期
2021年3月3日
權限
Cypriot Data Protection Commissioner
CY
部門
Real Estate
國家
CY
法律
GDPR狀態
FINAL說明
The Cypriot DPA imposed a fine of EUR 6,000 against KEPIDES (real estate company). The controller had submitted a list of buyers of the properties it manages to a parliamentary committee. However, the controller had failed to anonymize the list, as a result of which the names of the data subjects were transmitted.
法律引文
Art. 32 (4)
問題與違規
Insufficient technical and organisational measures to ensure information security