OTP BANK ROMANIA SA – €3,000 Fine (Romania, 2023)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
OTP BANK ROMANIA SA was fined €3,000 for mistakenly sending personal data to the wrong person. The bank failed to take proper steps to protect personal information. This incident serves as a warning for businesses to strengthen their data protection measures.
What happened
The Romanian DPA fined OTP BANK ROMANIA SA for accidentally transmitting personal data to an unauthorized third party.
Who was affected
An individual whose personal data was mistakenly sent to someone else was affected.
What the authority found
The DPA ruled that the bank did not implement adequate technical and organizational measures to safeguard personal data.
Why this matters
This ruling underscores the importance of having strong data protection practices in place. Companies should evaluate their security measures to prevent similar mistakes.
GDPR Articles Cited
The Romanian DPA has imposed a fine of EUR 3,000 on OTP BANK ROMANIA SA. The controller had accidentally transmitted personal data of an individual to an unauthorized third party. The DPA found that the controller had failed to implement appropriate technical and organizational measures to protect personal data.
Related Enforcement Actions (0)
No other enforcement actions found for OTP BANK ROMANIA SA in RO
This is the only recorded action for this entity in this jurisdiction.
Details
Fine Date
3 November 2023
Authority
Autoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal
Fine Amount
€3,000
Enforcement Tracker ID
ETid-2101
About this data
Cite as: Cookie Fines. OTP BANK ROMANIA SA - Romania (2023). Retrieved from cookiefines.eu
Last updated: