Details:
| Summary | The Romanian DPA has imposed a fine of EUR 1,500 on Wens Experience SRL.
In the course of its investigation, the DPA found that Wens Experience, in the course of acting as a processor on behalf of the controller, had engaged another processor to process employee data without having obtained prior authorization from the controller. This constitutes a violation of Art. 28 (2) GDPR. |
| Link: | link |
| Related articles: | Art. 28 (2) GDPR |
| Type: | Insufficient data processing agreement |
| Fine: | EUR 1,500 |
| Sector | Industry and Commerce |
All data is based on The CMS’s Law GDPR Enforcement Tracker Source: https://www.enforcementtracker.com/