President of the Zgierz District Court

€2,200

Insufficient technical and organisational measures to ensure information security

Päätöspäivä

13. elokuuta 2021

Viranomainen

Polish National Personal Data Protection Office (UODO)

PL

Ala

Public Sector and Education

Maa

PL

Laki

GDPR

Tila

FINAL

Kuvaus

The Polish DPA (UODO) has imposed a fine of EUR 2,200 on the president of the Zgierz District Court. The president had reported a data breach involving the loss of an unencrypted USB stick by a probation officer. The data medium stored the data of 400 persons under probation supervision. The lost and at the same time unsecured data carrier has not yet been found, so that unauthorized persons could still have access to the personal data it contained. The president had assumed that the duty to secure the data did not lie with himself, but with the respective probation officers who had these data in use. However, the DPA found that the president himself should have secured the USB sticks.

Oikeudelliset viittaukset

Art. 5 (1)Art. 25 (1)Art. 32 (1)

Asiat ja rikkomukset

Insufficient technical and organisational measures to ensure information security
Näytä virallinen asiakirja
Takaisin sakkotietokantaan
Edellinen Fine
Spanish Data Protection Authority (aepd) - Employe...
Seuraava hieno
Data Protection Authority of Hamburg (HmbBfDI) - C...

Pysy ajan tasalla yksityisyyden suojan valvonnasta

Kunnioitamme yksityisyyttäsi. Yksi sähköpostiviesti kuukaudessa, ei roskapostia, peruuta tilaus milloin tahansa.