Romania Romania

Continental Automotive Romania SRL

2,000 €

GDPR enforcement action by Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP) on 2022-06-30.

Rank · Sector
#441
of 597 in Industry and Commerce
Rank · Romania
#184
of 283
Rank · All fines
#2,303
of 3,050

Case details

Authority
Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)
Date
2022-06-30
Controller / Processor
Continental Automotive Romania SRL
Sector
Industry and Commerce
Quoted Articles
Art. 24 GDPR, Art. 32 (1) d) GDPR
Type of violation
Insufficient technical and organisational measures to ensure information security

Summary

The Romanian DPA has imposed a fine of EUR 2,000 on Continental Automotive Romania SRL.
The controller had reported a data breach to the DPA pursuant to Art. 33 GDPR.
The controller had discovered 135 unauthorized and improperly configured surveillance cameras on its premises, which, among other things, captured images of employees in the production area. These cameras were connected to unofficial and unprotected camera systems. For this reason, the DPA found that the controller had not taken appropriate technical and organizational measures to ensure the security of employees' personal data.

Open original source Links to the regulator's original publication or another source.

Related fines

Romania
Romania
2019-06-27
130,000 €
ETid-57
UNICREDIT BANK SA
Finance, Insurance and Consulting
Romania
Romania
2026-03-25
125,000 €
ETid-3071
RENAULT COMMERCIAL ROUMANIE S.R.L.
Industry and Commerce
Romania
Romania
2023-11-13
110,000 €
ETid-2112
Rompetrol Downstream SRL
Transportation and Energy
Romania
Romania
2020-12-17
100,000 €
ETid-489
Banca Transilvania SA
Finance, Insurance and Consulting
Romania
Romania
2023-08-21
70,000 €
ETid-2013
Uipath SRL
Industry and Commerce
Romania
Romania
2023-06-20
40,000 €
ETid-2135
Dante International SA
Industry and Commerce
Back to all fines