BAYARD REVISTAS, S.A.

€31,200

Insufficient technical and organisational measures to ensure information security

Otsuse kuupäev

28. september 2022

Ametiasutus

Spanish Data Protection Authority (aepd)

ES

Sektor

Media, Telecoms and Broadcasting

Riik

ES

Seadus

GDPR

Staatus

FINAL

Kirjeldus

The Spanish DPA has imposed a fine on Bayard Revistas S.A.. Unauthorized persons had accessed the Bayard database and thus unauthorizedly siphoned off location and contact data of users of the database. Approximately 470,000 users were affected by the incident. The DPA's investigation determined that a vulnerability in the controller's systems allowed the incident to occur. The original fine of EUR 52,000 was reduced to EUR 31,200 due to voluntary payment and admission of guilt.

Õiguslikud viited

Art. 5 (1)Art. 32Art. 33

Probleemid ja rikkumised

Insufficient technical and organisational measures to ensure information security
Vaata ametlikku dokumenti
Tagasi trahvide andmebaasi juurde
Eelmine trahv
Spanish Data Protection Authority (aepd) - CLUB NA...
Järgmine trahv
Data Protection Authority of Hamburg (HmbBfDI) - C...

Privaatsuse jõustamise kohta ajakohastatud teave

Me austame teie privaatsust. Üks e-kiri kuus, ei ole rämpsposti, loobuda tellimusest igal ajal.