Allium UPI

€3,000,000

Insufficient technical and organisational measures to ensure information security

Dato for beslutning

5. september 2025

Myndighed

Estonian Data Protection Authority (AKI)

EE

Sektor

Industry and Commerce

Land

EE

Lovgivning

GDPR

Status

FINAL

Beskrivelse

The Estonian DPA has imposed a fine of EUR 3,000,000 on Allium UPI. The controller failed to implement adequate technical and organisational measures to ensure data security. This resulted in a data breach involving the personal data of 750,000 individuals, including children and other vulnerable groups.

Problemer og overtrædelser

Insufficient technical and organisational measures to ensure information security
Se officielt dokument
Tilbage til bøde-databasen
Forrige bøde
Spanish Data Protection Authority (aepd) - Socieda...
Næste bøde
Data Protection Authority of Hamburg (HmbBfDI) - C...

Hold dig opdateret om håndhævelse af privatlivets fred

Vi respekterer dit privatliv. En e-mail om måneden, ingen spam, afmeld når som helst.