Details:
| Summary | A member of the AVSAB security committee used WhatsApp to send messages to private phone numbers containing personal information about employees. This was a violation of the confidentiality principle that, according to the AEPD, must be respected not only by the data controller, but also by any other subject involved in any phase of the processing. |
| Link: | link |
| Related articles: | Art. 5 (1) f) GDPR |
| Type: | Non-compliance with general data processing principles |
| Fine: | EUR 3,000 |
| Sector | Employment |
All data is based on The CMS’s Law GDPR Enforcement Tracker Source: https://www.enforcementtracker.com/