Sociedad de Gestión de Activos Procedentes de la Reestructuración Bancaria S.A.

€180,000

Insufficient technical and organisational measures to ensure information security

Tanggal Keputusan

4 September 2025

Wewenang

Spanish Data Protection Authority (aepd)

ES

Sektor

Finance, Insurance and Consulting

Negara

ES

Hukum

GDPR

Status

FINAL

Deskripsi

The Spanish DPA has imposed a fine of EUR 180,000 on Sociedad de Gestión de Activos Procedentes de la Reestructuración Bancaria S.A. The controller suffered a cyber attack due to insufficient technical and organisational measures. The controller also used a third party data processor with which the controller had no sufficient data processing agreement. The original fine of EUR 300,000 was reduced to EUR 180,000 due to immediate payment and admission of responsibility by the controller.

Kutipan Hukum

Art. 5 (1)Art. 28

Masalah & Pelanggaran

Insufficient technical and organisational measures to ensure information security
Lihat Dokumen Resmi
Kembali ke Basis Data Denda
Sebelumnya Denda
Belgian Data Protection Authority (APD) - Landlord...
Berikutnya Baik
Data Protection Authority of Hamburg (HmbBfDI) - C...

Tetap Terupdate tentang Penegakan Privasi

Kami menghormati privasi Anda. Satu email per bulan, tidak ada spam, berhenti berlangganan kapan saja.