Digi Távközlési Szolgáltató Kft. ('Digi') (electronic communication service provider)

€288,000

Insufficient technical and organisational measures to ensure information security

Дата на решението

12 юни 2020 г.

Орган

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)

HU

Сектор

Media, Telecoms and Broadcasting

Държава

HU

Право

GDPR

Статус

FINAL

Описание

The company had infringed the principles of purpose limitation and storage restriction because its database contained a large amount of customer data which were no longer relevant for the actual purpose of collection and for which no retention period had been set. Furthermore, the NAIH pointed out that the defendant had not taken proportionate measures to reduce the risks in the area of data management and data security, arguing, inter alia, that it had not used encryption mechanisms.

Правни цитати

Art. 5 (1)Art. 32 (1)

Въпроси и нарушения

Insufficient technical and organisational measures to ensure information security
Вижте официалния документ
Обратно към базата данни с глоби
Предишна глоба
Czech Data Protection Auhtority (UOOU) - Legal Per...
Следваща глоба
Data Protection Authority of Hamburg (HmbBfDI) - C...

Бъдете информирани за прилагането на поверителността

Уважаваме поверителността ви. Един имейл на месец, без спам, отпишете се по всяко време.