Cyfrowy Polsat S.A.

€245,000

Insufficient technical and organisational measures to ensure information security

Dato for beslutning

22. april 2021

Myndighed

Polish Data Protection Authority (UODO)

PL

Sektor

Media, Telecoms and Broadcasting

Land

PL

Lovgivning

GDPR

Status

FINAL

Beskrivelse

The Polish DPA (UODO) has fined Cyfrowy Polsat S.A. EUR 245,000. The fine was based on a large number of data breaches reported by the controller to the DPA. Frequently, postal correspondence containing personal data was lost or delivered to the wrong recipient. The DPA notes that although the data breaches were caused by the courier company contracted by the controller, the controller had to ensure that such breaches did not occur. The controller failed to implement technical and organizational measures appropriate to the risk to protect the processing of the data. Furthermore, the controller did not notify the data subjects about the data breaches until two to three months later.

Juridiske citater

Art. 24 (1)Art. 32 (1)Art. 34 (1)

Problemer og overtrædelser

Insufficient technical and organisational measures to ensure information security
Se officielt dokument
Tilbage til bøde-databasen
Forrige bøde
Spanish Data Protection Authority (aepd) - HazteOi...
Næste bøde
Data Protection Authority of Hamburg (HmbBfDI) - C...

Hold dig opdateret om håndhævelse af privatlivets fred

Vi respekterer dit privatliv. En e-mail om måneden, ingen spam, afmeld når som helst.