International Card Services B.V.

€150,000

Insufficient technical and organisational measures to ensure information security

Otsuse kuupäev

15. jaanuar 2024

Ametiasutus

Dutch Supervisory Authority for Data Protection (AP)

NL

Sektor

Finance, Insurance and Consulting

Riik

NL

Seadus

GDPR

Staatus

FINAL

Kirjeldus

The Dutch DPA has imposed a fine of EUR 150,000 on International Card Services B.V. (ICS). ICS failed to carry out a data protection impact assessment before starting the digital identification of customers in the Netherlands in 2019. The identity check covered around 1.5 million people and involved sensitive personal data such as pictures of the data subjects.

Õiguslikud viited

Art. 35

Probleemid ja rikkumised

Insufficient technical and organisational measures to ensure information security
Vaata ametlikku dokumenti
Tagasi trahvide andmebaasi juurde
Eelmine trahv
Romanian National Supervisory Authority for Person...
Järgmine trahv
Data Protection Authority of Hamburg (HmbBfDI) - C...

Privaatsuse jõustamise kohta ajakohastatud teave

Me austame teie privaatsust. Üks e-kiri kuus, ei ole rämpsposti, loobuda tellimusest igal ajal.