Company

€8,900

Insufficient technical and organisational measures to ensure information security

Beslissingsdatum

1 januari 2022

Autoriteit

Data Protection Authority of Niedersachsen

DE

Sector

Industry and Commerce

Land

HU

Wet

GDPR

Status

FINAL

Beschrijving

The DPA of Niedersachsen imposed a fine of EUR 8,900 on a company. The company had a customer database on the Internet with thousands of entries. During its investigation, the DPA found that the only access protection the company had implemented was a long-form web address but not additional measures such as password-protected access. The controller relied on the fact that the web would not become known.

Juridische citaten

Art. 32

Problemen en overtredingen

Insufficient technical and organisational measures to ensure information security
Officieel document bekijken
Terug naar de database met boetes
Vorige boete
Data Protection Authority of Niedersachsen - Compa...
Volgende boete
Data Protection Authority of Hamburg (HmbBfDI) - C...

Blijf op de hoogte van privacybescherming

We respecteren je privacy. Eén e-mail per maand, geen spam, afmelden kan altijd.