Skip to content
Enforcement
EN

NTT DATA ROMANIA S.A.: Insufficient technical and organisational measures to ensure information security

€25,000 fine - Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)

€25,000 Fine
NTT DATA ROMANIA S.A.
ROMANIA
Insufficient technical and organisational measures to ensure information security

Content

The Romanian DPA has imposed a fine of EUR 25,000 on NTT DATA ROMANIA S.A. The controller failed to implement sufficient technical and organisational measures, resulting in a data breach. The controller also failed to notify the DPA of the breach within 72 hours of becoming aware of the incident.

GDPR Articles: Art. 32 (1) b), d), (2) GDPR, Art. 33 (1) GDPR
Industry: Industry and Commerce