University of Agder

€12,700

Insufficient technical and organisational measures to ensure information security

Otsuse kuupäev

4. september 2024

Ametiasutus

Norwegian Supervisory Authority (Datatilsynet)

NO

Sektor

Public Sector and Education

Riik

NO

Seadus

GDPR

Staatus

FINAL

Kirjeldus

The Norwegian DPA has fined the University of Agder (UiA) EUR 12,700. An employee of UiA had discovered that documents containing personal data of employees, students and external individuals were stored in open Microsoft Teams foldersand that employees with no business need were able to access them. During its investigation, the DPA found that UiA had failed to implement appropriate technical and organisational measures to protect personal data.

Õiguslikud viited

Art. 32Art. 24

Probleemid ja rikkumised

Insufficient technical and organisational measures to ensure information security
Vaata ametlikku dokumenti
Tagasi trahvide andmebaasi juurde
Eelmine trahv
Polish National Personal Data Protection Office (U...
Järgmine trahv
Data Protection Authority of Hamburg (HmbBfDI) - C...

Privaatsuse jõustamise kohta ajakohastatud teave

Me austame teie privaatsust. Üks e-kiri kuus, ei ole rämpsposti, loobuda tellimusest igal ajal.