The Spanish data protection authority, the AEPD, fined Corporación de Radio y Televisión Española 60,000 euros for alleged violations of the EU General Data Protection Regulation. The AEPD found the company did not comply with Article 32 of the GDPR after it lost devices that contained sensitive personal information. The AEPD also found a water company violated Article 6 of the GDPR after it was discovered the organization modified an individual’s information without their consent. (Original articles are in Spanish.)
If you want to comment on this post, you need to login.