English School Cyprus

€4,000

Insufficient technical and organisational measures to ensure information security

Otsuse kuupäev

22. märts 2022

Ametiasutus

Cypriot Data Protection Commissioner

CY

Sektor

Public Sector and Education

Riik

CY

Seadus

GDPR

Staatus

FINAL

Kirjeldus

The Cypriot DPA has imposed a fine of EUR 4,000 on the English School in Cyprus. The school had reported a data breach to the DPA under Art. 33 GDPR. A teacher had used the email address of the students' parents for a purpose other than that for which the email addresses were originally collected. The DPA found that the school had failed to take adequate technical and organizational measures to ensure the protection of personal data and to prevent such incidents.

Õiguslikud viited

Art. 32

Probleemid ja rikkumised

Insufficient technical and organisational measures to ensure information security
Vaata ametlikku dokumenti
Tagasi trahvide andmebaasi juurde
Eelmine trahv
Cypriot Data Protection Commissioner - English Sch...
Järgmine trahv
Data Protection Authority of Hamburg (HmbBfDI) - C...

Privaatsuse jõustamise kohta ajakohastatud teave

Me austame teie privaatsust. Üks e-kiri kuus, ei ole rämpsposti, loobuda tellimusest igal ajal.