Alliance for the Union of Romanians Party: Non-compliance with general data processing principles

The Romanian DPA has imposed a fine of EUR 25,000 on the Alliance for the Union of Romanians Party. The controller did not implement adeqaute technical and organisational measures to ensure data security, which resulted in a data breach. The controller also processed personal data without a sufficient legal basis.

GDPR Articles: Art. 5 (1) c), (2) GDPR, Art. 6 (1) GDPR, Art. 25 (1), (2) GDPR, Art. 32 (1) b), d), (2) GDPR
Industry: Public Sector and Education