Ica s.r.l.

€30,000

Insufficient technical and organisational measures to ensure information security

Päätöspäivä

2. joulukuuta 2021

Viranomainen

Italian Data Protection Authority (Garante)

IT

Ala

Industry and Commerce

Maa

IT

Laki

GDPR

Tila

FINAL

Kuvaus

The Italian DPA (Garante) has fined ICA s.r.l. EUR 30,000. The municipality of Collegno had implemented a system developed by ICA through which citizens could pay fines for traffic violations. However, due to a lack of security precautions, it was theoretically possible for unauthorized persons to access personal data stored via the program. For this reason, the DPA found that ICA had failed to implement appropriate technical and organizational measures providing a level of security commensurate with the risk posed to the data subject.

Oikeudelliset viittaukset

Art. 5 (1)Art. 32

Asiat ja rikkomukset

Insufficient technical and organisational measures to ensure information security
Näytä virallinen asiakirja
Takaisin sakkotietokantaan
Edellinen Fine
Spanish Data Protection Authority (aepd) - IMAGINA...
Seuraava hieno
Data Protection Authority of Hamburg (HmbBfDI) - C...

Pysy ajan tasalla yksityisyyden suojan valvonnasta

Kunnioitamme yksityisyyttäsi. Yksi sähköpostiviesti kuukaudessa, ei roskapostia, peruuta tilaus milloin tahansa.