DSK Bank
€511,000
Insufficient technical and organisational measures to ensure information security
Beslissingsdatum
28 augustus 2019
Autoriteit
Data Protection Commision of Bulgaria (KZLD)
BG
Sector
Finance, Insurance and Consulting
Land
BG
Wet
GDPRStatus
FINALBeschrijving
Leakage of personal data due to inadequate technical and organisational measures to ensure the protection of information security. Third parties had access to over 23000 credit records relating to over 33000 bank customers including personal data such as names, citizenships, identification numbers, adresses, copies of identity cards and biometric data.
Juridische citaten
Art. 32
Problemen en overtredingen
Insufficient technical and organisational measures to ensure information security