Ica s.r.l.

€30,000

Insufficient technical and organisational measures to ensure information security

Beslissingsdatum

2 december 2021

Autoriteit

Italian Data Protection Authority (Garante)

IT

Sector

Industry and Commerce

Land

IT

Wet

GDPR

Status

FINAL

Beschrijving

The Italian DPA (Garante) has fined ICA s.r.l. EUR 30,000. The municipality of Collegno had implemented a system developed by ICA through which citizens could pay fines for traffic violations. However, due to a lack of security precautions, it was theoretically possible for unauthorized persons to access personal data stored via the program. For this reason, the DPA found that ICA had failed to implement appropriate technical and organizational measures providing a level of security commensurate with the risk posed to the data subject.

Juridische citaten

Art. 5 (1)Art. 32

Problemen en overtredingen

Insufficient technical and organisational measures to ensure information security
Officieel document bekijken
Terug naar de database met boetes
Vorige boete
Spanish Data Protection Authority (aepd) - IMAGINA...
Volgende boete
Data Protection Authority of Hamburg (HmbBfDI) - C...

Blijf op de hoogte van privacybescherming

We respecteren je privacy. Eén e-mail per maand, geen spam, afmelden kan altijd.