Enel Energie Muntenia S.A. – €10,000 Fine (Romania, 2022)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
Enel Energie Muntenia S.A. was fined €10,000 after a customer received another customer's personal data by mistake. The company didn't have adequate protections in place to prevent such errors, showing the need for strong data security measures.
What happened
A customer mistakenly received an email with another customer's personal data due to inadequate security measures.
Who was affected
Customers whose personal data was mishandled by being sent to the wrong recipient.
What the authority found
The Romanian DPA found the company failed to implement necessary technical and organizational measures to protect personal data.
Why this matters
This case highlights the importance of robust data protection systems to prevent accidental data breaches, reminding companies to regularly review and improve their security protocols.
GDPR Articles Cited
The Romanian DPA has fined Enel Energie Muntenia S.A. EUR 10,000. A customer had mistakenly received an email addressed to another customer containing documents with personal data of the other customer. In the course of its investigation, the DPA found that the incident had occurred due to the company's failure to take adequate technical and organizational measures to protect personal data.
Related Enforcement Actions (0)
No other enforcement actions found for Enel Energie Muntenia S.A. in RO
This is the only recorded action for this entity in this jurisdiction.
Details
Fine Date
22 August 2022
Authority
Autoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal
Fine Amount
€10,000
Enforcement Tracker ID
ETid-1370
About this data
Cite as: Cookie Fines. Enel Energie Muntenia S.A. - Romania (2022). Retrieved from cookiefines.eu
Last updated: