Skip to content
Enforcement
EN

Unicredit Bank SA: Insufficient technical and organisational measures to ensure information security

€15,000 fine - Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)

€15,000 Fine
Unicredit Bank SA
ROMANIA
Insufficient technical and organisational measures to ensure information security

Content

The Romanian DPA has imposed a fine of EUR 15,000 on Unicredit Bank SA. The controller failed to implement sufficient technical and organisational measures to ensure data security, resulting in two separate data breaches.

GDPR Articles: Art. 25 (1) GDPR
Industry: Finance, Insurance and Consulting