Central Young Men’s Christian Association
€8,700
Insufficient technical and organisational measures to ensure information security
결정 날짜
2024년 4월 30일
권한
Information Commissioner (ICO)
GB
섹터
Individuals and Private Associations
국가
GB
법률
GDPR상태
FINAL설명
The UK DPA (ICO) has fined the Central Young Men’s Christian Association EUR 8,700. The controller had sent an email to individuals participating in a program for individuals suffering from HIV without using the blind copy option, which made the email addresses of all recipients known to other recipients. 166 individuals could be identified or potentially identified based on their email addresses. From this it could be concluded that these people were probably living with HIV.
법적 인용
Art. 5 (1)Art. 32 (1)
문제 및 위반 사항
Insufficient technical and organisational measures to ensure information security