Aid organization

Non disponible

Insufficient technical and organisational measures to ensure information security

Date de décision

1 janvier 2022

Autorité

Data Protection Authority of Brandenburg

DE

Secteur

Individuals and Private Associations

Pays

DE

Droit

GDPR

Statut

FINAL

Description

The DPA of Brandenburg has imposed a five-figure fine on an aid organization. The aid organization provides transportation for people with illnesses. The organization had reported a data breach to the DPA in which data of data subjects had been published due to a hack. At the time of the attack, the controller's database contained more than 80,000 records with data that included information about the health status of the data subjects. During its investigation, the DPA found that the bank had failed to take adequate technical and organizational measures to protect personal data, which allowed such a breach to occur. In addition, the DPA found that the bank had failed to conclude a processing agreement with its processors.

Citations légales

Art. 28 (3)Art. 32

Questions et violations

Insufficient technical and organisational measures to ensure information security
Voir le document officiel
Retour à la base de données des amendes
Précédent Amende
Data Protection Authority of Brandenburg - Operato...
Prochaine amende
Data Protection Authority of Hamburg (HmbBfDI) - C...

Restez informé sur l'application de la législation en matière de protection de la vie privée

Nous respectons votre vie privée. Un courriel par mois, pas de spam, désabonnement à tout moment.