Hellenic Post (ΕΛΛΗΝΙΚΑ ΤΑΧΥΔΡΟΜΕΙΑ ΑΝΩΝΥΜΗ ΕΤΑΙΡΕΙΑ)
€2,995,140
Insufficient technical and organisational measures to ensure information security
Дата на решението
28 февруари 2024 г.
Орган
Hellenic Data Protection Authority (HDPA)
GR
Сектор
Transportation and Energy
Държава
GR
Право
GDPRСтатус
FINALОписание
The Hellenic DPA has imposed a fine of EUR 2,995,140 on the Hellenic Post (ΕΛΛΗΝΙΚΑ ΤΑΧΥΔΡΟΜΕΙΑ ΑΝΩΝΥΜΗ ΕΤΑΙΡΕΙΑ). The controller had suffered a data breach which resulted in personal data being accessed and later published on the Dark Web. During its investigation, the DPA found that the controller had failed to implement appropriate technical and organizational measures to prevent such an incident.
Правни цитати
Art. 5 (1)Art. 32
Въпроси и нарушения
Insufficient technical and organisational measures to ensure information security