Bank of Ireland 365

€750,000

Insufficient technical and organisational measures to ensure information security

Decision Date

February 27, 2023

Authority

Data Protection Authority of Ireland

IE

Sector

Finance, Insurance and Consulting

Country

IE

Law

GDPR

Status

FINAL

Description

The Irish DPA has fined Bank of Ireland 365 EUR 750,000. The bank had notified the DPA of 10 data breaches linked to the bank's app. Unauthorized persons had managed to gain access to the app as well as to other individuals' accounts. The DPA determined that this data breach was facilitated due to the bank's failure to implement appropriate technical and organizational measures to protect personal data.

Legal Citations

Art. 5 (1)Art. 32 (1)

Issues & Violations

Insufficient technical and organisational measures to ensure information security
View Official Document
Back to Fines Database
Previous Fine
Spanish Data Protection Authority (aepd) - Attorne...
Next Fine
Data Protection Authority of Hamburg (HmbBfDI) - C...

Stay Updated on Privacy Enforcement

We respect your privacy. One email per month, no spam, unsubscribe anytime.