Unirea Medical Center S.R.L.: Insufficient technical and organisational measures to ensure information security

€2,000 fine - Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)

€2,000 Fine

Unirea Medical Center S.R.L.

ROMANIA

Insufficient technical and organisational measures to ensure information security

Jan 3, 2025 Source

Content

The Romanian DPA has imposed a fine of EUR 2,000 on Unirea Medical Center S.R.L. The controller publicly exposed the access credentials for a data subject's email account on a workstation.

GDPR Articles: Art. 24 GDPR, Art. 32 GDPR
Industry: Health Care