| Spain |
Spanish Data Protection Authority (aepd) |
30/08/2022 |
EUR € |
2,000 |
Sindicato Intersectorial Trabajadores/as Provincia de Alicante |
Art. 5 (1) c) GDPR |
Other |
Non-compliance with general data processing principles |
6513 |
|
| Spain |
Spanish Data Protection Authority (aepd) |
22/08/2022 |
EUR € |
800 |
UNONO NET 3.0, S.L. |
Art. 5 (1) f) GDPR, Art. 32 GDPR |
Customer Service |
Non-compliance with general data processing principles |
6509 |
|
| Spain |
Spanish Data Protection Authority (aepd) |
22/08/2022 |
EUR € |
600 |
Private individual |
Art. 5 (1) c) GDPR, Art. 13 GDPR |
Private Citizen |
Non-compliance with general data processing principles |
6510 |
|
| Romania |
Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP) |
22/08/2022 |
EUR € |
10,000 |
Enel Energie Muntenia S.A. |
Art. 32 GDPR |
Energy/Utilities |
Insufficient technical and organisational measures to ensure information security |
6511 |
|
| France |
French Data Protection Authority (CNIL) |
19/08/2022 |
EUR € |
600,000 |
ACCOR SA |
Art. 12 GDPR, Art. 13 GDPR, Art. 15 GDPR, Art. 21 GDPR, Art. 32 GDPR, L. 34-5 CPCE |
Hospitality/Travel |
Insufficient fulfilment of data subjects rights |
6508 |
|
| Spain |
Spanish Data Protection Authority (aepd) |
16/08/2022 |
EUR € |
5,000 |
RODALI GESTIÓN INMOBILIARIA, S.L. |
Art. 13 GDPR |
Other |
Insufficient fulfilment of information obligations |
6507 |
|
| Spain |
Spanish Data Protection Authority (aepd) |
12/08/2022 |
EUR € |
180 |
Private individual |
Art. 5 (1) c) GDPR |
Private Citizen |
Non-compliance with general data processing principles |
6505 |
|
| Romania |
Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP) |
09/08/2022 |
EUR € |
7,000 |
Art. 12 (1) GDPR, Art. 58 (1) a), e) GDPR |
Art. 12 (1) GDPR, Art. 58 (1) a), e) GDPR |
Transportation/Logistics |
Insufficient fulfilment of data subjects rights |
6502 |
|
| Romania |
Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP) |
09/08/2022 |
EUR € |
1,000 |
Wabag Water Services SRL |
Art. 5 (1) a) GDPR, Art. 5 (2) GDPR, Art. 6 GDPR |
Business/Company/Employer |
Insufficient legal basis for data processing |
6503 |
|
| Romania |
Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP) |
04/08/2022 |
EUR € |
2,000 |
Sephora Cosmetics România SA |
Art. 21 GDPR |
Consumer Goods |
Insufficient fulfilment of data subjects rights |
6497 |
|
