Cyfrowy Polsat S.A.

€245,000

Insufficient technical and organisational measures to ensure information security

Fecha de la decisión

22 de abril de 2021

Autoridad

Polish Data Protection Authority (UODO)

PL

Sector

Media, Telecoms and Broadcasting

País

PL

Ley

GDPR

Estado

FINAL

Descripción

The Polish DPA (UODO) has fined Cyfrowy Polsat S.A. EUR 245,000. The fine was based on a large number of data breaches reported by the controller to the DPA. Frequently, postal correspondence containing personal data was lost or delivered to the wrong recipient. The DPA notes that although the data breaches were caused by the courier company contracted by the controller, the controller had to ensure that such breaches did not occur. The controller failed to implement technical and organizational measures appropriate to the risk to protect the processing of the data. Furthermore, the controller did not notify the data subjects about the data breaches until two to three months later.

Citas legales

Art. 24 (1)Art. 32 (1)Art. 34 (1)

Problemas e infracciones

Insufficient technical and organisational measures to ensure information security
Ver documento oficial
Volver a la base de datos de multas
Multa anterior
Spanish Data Protection Authority (aepd) - HazteOi...
Siguiente multa
Data Protection Authority of Hamburg (HmbBfDI) - C...

Manténgase al día sobre la aplicación de las normas de protección de la intimidad

Respetamos su intimidad. Un correo electrónico al mes, sin spam, darse de baja en cualquier momento.