Maynooth University
€40,000
Insufficient technical and organisational measures to ensure information security
Datum rozhodnutí
22. listopadu 2024
Úřad
Data Protection Authority of Ireland
IE
Sektor
Public Sector and Education
Země
IE
Právo
GDPRStav
FINALPopis
The Irish DPA has imposed a fine of EUR 40,000 on Maynooth University. The controller failed to implement adequate technical and organisational measures, resulting in an unauthorised third party gaining access to multiple employees' email accounts, which the third party then used for fraudulent purposes.
Právní citace
Art. 5 (1)Art. 32 (1)Art. 33 (1)
Problémy a porušení
Insufficient technical and organisational measures to ensure information security