University of Agder

€12,700

Insufficient technical and organisational measures to ensure information security

Datum der Entscheidung

4. September 2024

Behörde

Norwegian Supervisory Authority (Datatilsynet)

NO

Sektor

Public Sector and Education

Land

NO

Recht

GDPR

Status

FINAL

Beschreibung

The Norwegian DPA has fined the University of Agder (UiA) EUR 12,700. An employee of UiA had discovered that documents containing personal data of employees, students and external individuals were stored in open Microsoft Teams foldersand that employees with no business need were able to access them. During its investigation, the DPA found that UiA had failed to implement appropriate technical and organisational measures to protect personal data.

Juristische Zitate

Art. 32Art. 24

Probleme und Verstöße

Insufficient technical and organisational measures to ensure information security
Offizielles Dokument anzeigen
Zurück zur Bußgelddatenbank
Vorherige Geldstrafe
Polish National Personal Data Protection Office (U...
Nächste Geldstrafe
Data Protection Authority of Hamburg (HmbBfDI) - C...

Bleiben Sie auf dem Laufenden über die Durchsetzung des Datenschutzes

Wir respektieren Ihre Privatsphäre. Eine E-Mail pro Monat, kein Spam, jederzeit abbestellbar.