GDPR Fines

2023 starts with GDPR fines issued by ANSPDCP

Thus, on January 3, a homeowners’ association in Iasi was fined €500.

– Why did the ANSPDCP fine the data controller?

The investigation was carried out following a complaint that the operator had displayed payment lists containing the name and surname of each member of the Owners’ Association. The complainant also complained about the display of a defamatory inscription mentioning his personal data (name and surname).

On January 4, Apă Canal Ilfov SA was fined EUR 3000.

– Why did the ANSPDCP fine the data controller?

During the investigation, it was found that the breach of data processing security occurred as a result of the fact that, in order to send an electronic message to users registered on the company’s online portal, the operator erroneously entered the e-mail addresses in the „To” section instead of „BCC”.As a result, it was found that this breach led to unauthorized disclosure or unauthorized access to personal data (e-mail address), thus, a significant number of individuals were affected.

Stay tuned for further information in the field of personal data protection. Subscribe to our Newsletter!