Details:
| Summary | The Cypriot DPA imposed a fine of EUR 6,000 against KEPIDES (real estate company). The controller had submitted a list of buyers of the properties it manages to a parliamentary committee. However, the controller had failed to anonymize the list, as a result of which the names of the data subjects were transmitted. |
| Link: | link |
| Related articles: | Art. 32 (4) |
| Type: | Insufficient technical and organisational measures to ensure information security |
| Fine: | EUR 6,000 |
| Sector | Real Estate |
All data is based on The CMS’s Law GDPR Enforcement Tracker Source: https://www.enforcementtracker.com/