Details:
| Summary | The Spanish DPA has imposed a fine of EUR 15,000 on RCL CRUISES LTD. An individual had filed a complaint with the DPA. The individual, after requesting information about a cruise ship by e-mail, had received an e-mail from the controller containing personal data of another individual. The DPA found that the controller had failed to implement appropriate technical and organizational measures to protect personal data. |
| Link: | link |
| Related articles: | Art. 5 (1) f) GDPR, Art. 32 GDPR |
| Type: | Non-compliance with general data processing principles |
| Fine: | EUR 15,000 |
| Sector | Accomodation and Hospitalty |
All data is based on The CMS’s Law GDPR Enforcement Tracker Source: https://www.enforcementtracker.com/