Enforcement
EN FARMEC SA: Insufficient technical and organisational measures to ensure information security
€5,000 fine - Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)
Content
The Romanian DPA has imposed a fine of EUR 5,000 on FARMEC SA. The controller failed to implement sufficient technical and organisational measures to ensure data security, resulting in a data breach.
GDPR Articles: Art. 25 (1) GDPR, Art. 32 (1), b), d), (2) GDPR
Industry: Industry and Commerce