Virgin Mobile Polska

€443,000

Insufficient technical and organisational measures to ensure information security

Decision Date

December 14, 2020

Authority

Polish National Personal Data Protection Office (UODO)

PL

Sector

Media, Telecoms and Broadcasting

Country

PL

Law

GDPR

Status

FINAL

Description

The Polish DPA (UODO) fined Virgin Mobile Polska EUR 443,000 due to a data leak that allowed unauthorized third parties to access personal data stored by Virgin Mobile Polska as a result of inadequate security measures. The DPA notes that the company did not conduct regular and extensive tests on the effectiveness of the measures applied to ensure data security. Indeed, activities in this regard were conducted only in the event of a suspected security leak.

Legal Citations

Art. 5 (1)Art. 25 (1)Art. 32 (1)

Issues & Violations

Insufficient technical and organisational measures to ensure information security
View Official Document
Back to Fines Database
Previous Fine
Information Commissioner of Isle of Man - Cosmetic...
Next Fine
Data Protection Authority of Hamburg (HmbBfDI) - C...

Stay Updated on Privacy Enforcement

We respect your privacy. One email per month, no spam, unsubscribe anytime.