Romania

Realmedia Network SA

8,000 €

GDPR enforcement action by Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP) on 2022-09-08.

Rank · Sector

#312

of 369 in Media, Telecoms and Broadcasting

Rank · Romania

#52

of 283

Rank · All fines

#1,511

of 3,050

Case details

Authority: Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)
Date: 2022-09-08
Controller / Processor: Realmedia Network SA
Sector: Media, Telecoms and Broadcasting
Quoted Articles: Art. 32 (1) b) GDPR, Art. 32 (2) GDPR
Type of violation: Insufficient technical and organisational measures to ensure information security

Summary

The Romanian DPA has fined Realmedia Network SA EUR 8,000. The company had suffered security breaches on a website it operates. This allowed it to leak and access unauthorized data. The data involved included surnames, first names, telephone numbers, e-mail addresses, postal addresses, signatures, copies of ID cards, bank data and information from land register extracts of the data subjects. A total of 194,309 people were affected by the security incident. The DPA found that the company had failed to take adequate technical and organizational measures to ensure a level of data security appropriate to the processing risk.

Open original source Links to the regulator's original publication or another source.