Romania

Telekom Romania Communications SA

6,000 €

GDPR enforcement action by Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP) on 2021-12-06.

Rank · Sector

#317

of 369 in Media, Telecoms and Broadcasting

Rank · Romania

#62

of 283

Rank · All fines

#1,620

of 3,050

Case details

Authority: Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)
Date: 2021-12-06
Controller / Processor: Telekom Romania Communications SA
Sector: Media, Telecoms and Broadcasting
Quoted Articles: Art. 5 (1) d), f) GDPR, Art. 5 (2) GDPR, Art. 17 GDPR
Type of violation: Non-compliance with general data processing principles

Summary

The Romanian DPA (ANSPDCP) imposed a fine of EUR 6,000 on Telekom Romania Communications SA.
A data subject had complained that the controller had sent invoices and messages to his email address informing him of another person's payment arrears.
During the investigation, the DPA found that the controller had collected and processed certain personal data in error, resulting in the unlawful disclosure of the personal data.
At the same time, the DPA found that the controller had not taken the necessary measures to comply with the data subject's request for deletion of his personal data. The fine is composed proportionally EUR 5,000 for a breach of Art. 5 (1) d), f) GDPR, Art. 5 (2) GDPR and EUR 1,000 for a breach of Art. 17 GDPR.

Open original source Links to the regulator's original publication or another source.