FAN Courier Express SRL – €11,000 Fine (Romania, 2019)

€11,000Autoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal25 November 2019Romania
final
Fine

General GDPR enforcement action

This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.

FAN Courier Express SRL was fined EUR 11,000 for not securing customer data properly. This led to unauthorized access to sensitive information like bank card details and personal IDs of about 1,100 people. Businesses should ensure strong data protection measures to avoid similar breaches.

What happened

FAN Courier Express SRL lost and exposed personal data, including bank card details, due to inadequate security measures.

Who was affected

Approximately 1,100 individuals whose sensitive personal data, such as bank card numbers and personal IDs, were accessed without authorization.

What the authority found

The Romanian data protection authority fined FAN Courier for failing to implement adequate security measures, violating GDPR's requirements for data protection.

Why this matters

This case highlights the importance of implementing robust security measures to protect customer data. Companies should regularly review and update their data protection practices to prevent unauthorized access and potential fines.

GDPR Articles Cited

Art. 32 GDPR
Romania enforcementAutoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal actionsAll FAN Courier Express SRL actions
Full Legal Summary
Detailed

The fine was imposed because the controller failed to take appropriate technical and organisational measures leading to the loss and unauthorised access to personal data (name, bank card number, CVV code, cardholder's address, personal identification number, serial and identity card number, bank account number, authorised credit limit) of approximately 1,100 data subjects.

Related Enforcement Actions (0)

No other enforcement actions found for FAN Courier Express SRL in RO

This is the only recorded action for this entity in this jurisdiction.

Details

Fine Date

25 November 2019

Authority

Autoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal

Fine Amount

€11,000

Enforcement Tracker ID

ETid-115

Sources

About this data

Data: CMS GDPR Enforcement Tracker
Licensed under CC BY-NC-SA 4.0
AI-verified and classified

Cite as: Cookie Fines. FAN Courier Express SRL - Romania (2019). Retrieved from cookiefines.eu

Report Inaccuracy

Last updated: