Compania Națională Poșta Română – €1,937 Fine (Romania, 2020)

€1,937Autoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal15 July 2020Romania
final
Fine

General GDPR enforcement action

This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.

Romania's National Post Company was fined for not securing personal data properly, leading to unauthorized access. The company failed to use measures like pseudonymization to protect data such as email addresses and phone numbers. This case stresses the need for strong data protection measures to prevent unauthorized access.

What happened

The Romanian National Post Company failed to implement adequate security measures, resulting in unauthorized access to personal data.

Who was affected

81 individuals whose email addresses and phone numbers were accessed without authorization.

What the authority found

The National Supervisory Authority found a breach of GDPR Article 32 due to inadequate data protection measures.

Why this matters

This fine highlights the necessity for companies to implement robust security measures to protect personal data. It serves as a reminder that inadequate data protection can lead to breaches and financial penalties.

GDPR Articles Cited

Art. 32 GDPR

Entities Involved

Compania Națională Poșta Română
Compania Națională Poșta Română
Romania enforcementAutoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal actionsAll Compania Națională Poșta Română actions
Full Legal Summary
Detailed

The National Supervisory Authority conducted an investigation into the Romanian National Post Company, and found that it did not implement adequate technical and organizational measures (such as pseudonymization) when processing personal data. This resulted in the unauthorized access of personal data like email addresses and telephone numbers of 81 different data subjects. Whether there was a breach of GDPR Art.32. The National Supervisory Authority held that there was a breach of Art.32 and imposed a fine of 9,686.60 lei, the equivalent of 2,000 euros.

Related Enforcement Actions (0)

No other enforcement actions found for Compania Națională Poșta Română in RO

This is the only recorded action for this entity in this jurisdiction.

Details

Fine Date

15 July 2020

Authority

Autoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal

Fine Amount

€1,937

9,687 RON

GDPRhub ID

gdprhub-2594

Sources

About this data

Data: GDPRhub (noyb.eu)
Licensed under CC BY-NC-SA 4.0
AI-verified and classified

Cite as: Cookie Fines. Compania Națională Poșta Română - Romania (2020). Retrieved from cookiefines.eu

Report Inaccuracy

Last updated: