Enforcement
EN Vodafone Romania: Insufficient technical and organisational measures to ensure information security
€3,000 fine - Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)
Content
Vodafone Romania had incorrectly processed personal data of an individual in order to process a complaint, which was subsequently sent to a wrong e-mail address. The reason for this was that there were insufficient security measures in place to prevent such erroneous data processing.
GDPR Articles: Art. 5 (1) f) GDPR, Art. 32 GDPR
Industry: Media, Telecoms and Broadcasting