Bank of Ireland

€463,000

Insufficient technical and organisational measures to ensure information security

Päätöspäivä

5. huhtikuuta 2022

Viranomainen

Data Protection Authority of Ireland

IE

Ala

Finance, Insurance and Consulting

Maa

IE

Laki

GDPR

Tila

FINAL

Kuvaus

The Irish DPA has fined the Bank of Ireland EUR 463,000. The bank had reported 22 data breaches to the DPA under Article 33 GDPR. As part of its investigation, the DPA found that the bank had provided false information to the Central Credit Register due to a mix-up of bank customers' account data. This error had the potential to have a negative impact on the creditworthiness of the data subjects. The DPA found that the personal data breach had occurred due to inadequate technical and organizational measures on the part of the bank. In addition, the bank did not immediately inform the data subjects and the DPA about the data breach.

Oikeudelliset viittaukset

Art. 32Art. 33Art. 34

Asiat ja rikkomukset

Insufficient technical and organisational measures to ensure information security
Näytä virallinen asiakirja
Takaisin sakkotietokantaan
Edellinen Fine
Danish Data Protection Authority (Datatilsynet) - ...
Seuraava hieno
Data Protection Authority of Hamburg (HmbBfDI) - C...

Pysy ajan tasalla yksityisyyden suojan valvonnasta

Kunnioitamme yksityisyyttäsi. Yksi sähköpostiviesti kuukaudessa, ei roskapostia, peruuta tilaus milloin tahansa.