The company did not provide individuals with clear information about how their data would be used and did not obtain valid consent for the processing activities.
The company's practices violated the rights of individuals and did not meet the GDPR's requirements for ensuring the protection and security of personal data.
[
add
]
[
|
|
...
]