Indcap AB

€43,000

Insufficient technical and organisational measures to ensure information security

Fecha de la decisión

7 de noviembre de 2023

Autoridad

Data Protection Authority of Sweden

SE

Sector

Finance, Insurance and Consulting

País

SE

Ley

GDPR

Estado

FINAL

Descripción

The Swedish DPA has imposed a fine of EUR 43,000 on Indecap AB. The controller had accidentally sent an email to a large number of its customers containing an Excel document including a report with personal data of other customers. The document cotained information on social security numbers, e-mail addresses, information on selected funds, etc. of more than 52,000 individuals. During its investigation, the DPA found that the controller had failed to implement appropriate technical and organizational measures to protect personal data, allowing such an incident to occur.

Citas legales

Art. 32 (1)

Problemas e infracciones

Insufficient technical and organisational measures to ensure information security
Ver documento oficial
Volver a la base de datos de multas
Multa anterior
Spanish Data Protection Authority (aepd) - THE BEE...
Siguiente multa
Data Protection Authority of Hamburg (HmbBfDI) - C...

Manténgase al día sobre la aplicación de las normas de protección de la intimidad

Respetamos su intimidad. Un correo electrónico al mes, sin spam, darse de baja en cualquier momento.