Digi Távközlési Szolgáltató Kft. ('Digi') (electronic communication service provider)

€288,000

Insufficient technical and organisational measures to ensure information security

Lēmuma datums

2020. gada 12. jūnijs

Iestāde

Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)

HU

Nozare

Media, Telecoms and Broadcasting

Valsts

HU

Likums

GDPR

Statuss

FINAL

Apraksts

The company had infringed the principles of purpose limitation and storage restriction because its database contained a large amount of customer data which were no longer relevant for the actual purpose of collection and for which no retention period had been set. Furthermore, the NAIH pointed out that the defendant had not taken proportionate measures to reduce the risks in the area of data management and data security, arguing, inter alia, that it had not used encryption mechanisms.

Juridiskās atsauces

Art. 5 (1)Art. 32 (1)

Jautājumi un pārkāpumi

Insufficient technical and organisational measures to ensure information security
Skatīt oficiālo dokumentu
Atgriezties pie Naudas sodu datubāzes
Iepriekšējais naudas sods
Czech Data Protection Auhtority (UOOU) - Legal Per...
Nākamais naudas sods
Data Protection Authority of Hamburg (HmbBfDI) - C...

Atjauniniet informāciju par konfidencialitātes ieviešanu

Mēs respektējam jūsu konfidencialitāti. Viens e-pasts mēnesī, bez surogātpasta, jebkurā laikā varat atteikties no abonēšanas.