Romanian Post – €2,000 Fine (Romania, 2022)

€2,000Autoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal7 November 2022Romania
final
Fine

General GDPR enforcement action

This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.

The Romanian Post was fined EUR 2,000 after a data breach where mailings with sensitive information were lost. The DPA found the Post didn't have enough security measures to protect personal data. This is important because it shows that businesses must have strong data protection practices to avoid breaches.

What happened

The Romanian Post lost mailings containing sensitive personal information, leading to a data breach.

Who was affected

35 individuals whose pension statements, employment certificates, and death certificates were lost.

What the authority found

The Romanian DPA fined the Romanian Post for failing to implement adequate security measures to protect personal data.

Why this matters

This fine highlights the critical need for businesses to implement robust security measures to protect personal data and avoid breaches. It serves as a reminder that inadequate data protection can lead to financial penalties.

GDPR Articles Cited

Art. 32(1)(b) GDPR
Romania enforcementAutoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal actionsAll Romanian Post actions
Full Legal Summary
Detailed

The Romanian DPA has imposed a fine of EUR 2,000 on the Romanian Post. The Post suffered a data breach where staff lost several mailings containing pension statements, employment certificates and death certificates. The incident affected 35 individuals (recipients). The DPA found that the Post had failed to implement adequate technical and organizational measures to protect personal data that might have prevented such an incident.

Related Enforcement Actions (0)

No other enforcement actions found for Romanian Post in RO

This is the only recorded action for this entity in this jurisdiction.

Details

Fine Date

7 November 2022

Authority

Autoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal

Fine Amount

€2,000

Enforcement Tracker ID

ETid-1479

Sources

About this data

Data: CMS GDPR Enforcement Tracker
Licensed under CC BY-NC-SA 4.0
AI-verified and classified

Cite as: Cookie Fines. Romanian Post - Romania (2022). Retrieved from cookiefines.eu

Report Inaccuracy

Last updated: