Enforcement
EN Unita Turism Holding S.A.: Insufficient technical and organisational measures to ensure information security
€5,000 fine - Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)
Content
The Romanian DPA has imposed a fine of EUR 5,000 on Unita Turism Holding S.A. The controller did not implement adequate technical and organisational measures to ensure cybersecurity, resulting in a successful cyberattack.
GDPR Articles: Art. 32 (1) b), (2) GDPR
Industry: Employment