Tusla Child and Family Agency
€85,000
Insufficient technical and organisational measures to ensure information security
Ημερομηνία απόφασης
12 Αυγούστου 2020
Αρχή
Data Protection Authority of Ireland
IE
Τομέας
Public Sector and Education
Χώρα
IE
Νόμος
GDPRΚατάσταση
FINALΠεριγραφή
The Irish DPA (DPC) fined Tusla Child and Family Agency EUR 85,000. The controller had reported 71 data breaches to the Irish DPA that occurred between May 25 and November 16, 2018, and concerned the unauthorized access of personal data processed by the controller. After a broad investigation, the DPA concluded that the controller failed to implement adequate technical and organizational measures to protect the data processing and thus violated Art. 32 (1) of the GDPR.
Νομικές παραπομπές
Art. 32 (1)
Θέματα & Παραβάσεις
Insufficient technical and organisational measures to ensure information security