BAYARD REVISTAS, S.A.

€31,200

Insufficient technical and organisational measures to ensure information security

Dato for beslutning

28. september 2022

Myndighed

Spanish Data Protection Authority (aepd)

ES

Sektor

Media, Telecoms and Broadcasting

Land

ES

Lovgivning

GDPR

Status

FINAL

Beskrivelse

The Spanish DPA has imposed a fine on Bayard Revistas S.A.. Unauthorized persons had accessed the Bayard database and thus unauthorizedly siphoned off location and contact data of users of the database. Approximately 470,000 users were affected by the incident. The DPA's investigation determined that a vulnerability in the controller's systems allowed the incident to occur. The original fine of EUR 52,000 was reduced to EUR 31,200 due to voluntary payment and admission of guilt.

Juridiske citater

Art. 5 (1)Art. 32Art. 33

Problemer og overtrædelser

Insufficient technical and organisational measures to ensure information security
Se officielt dokument
Tilbage til bøde-databasen
Forrige bøde
Spanish Data Protection Authority (aepd) - CLUB NA...
Næste bøde
Data Protection Authority of Hamburg (HmbBfDI) - C...

Hold dig opdateret om håndhævelse af privatlivets fred

Vi respekterer dit privatliv. En e-mail om måneden, ingen spam, afmeld når som helst.