Authority
CNIL
Country
France
Date Issued
November 30, 2022
Industry
Telecommunications
Summary
A fixed telecommunications operator was fined €300,000 by CNIL for multiple GDPR violations including failure to comply with data subject rights (access and erasure requests), inadequate data security, and failure to properly document a data breach. The authority issued an injunction with penalty provisions.
Violation Types
SecurityData Subject RightsRight to Erasure
Articles Violated
Avoid enforcement risk with automated compliance
IQWorks helps organizations automate GDPR compliance before regulators come knocking.
Talk to an Expert