DSK Bank
€511,000
Insufficient technical and organisational measures to ensure information security
Data decyzji
28 sierpnia 2019
Władza
Data Protection Commision of Bulgaria (KZLD)
BG
Sektor
Finance, Insurance and Consulting
Kraj
BG
Prawo
GDPRStatus
FINALOpis
Leakage of personal data due to inadequate technical and organisational measures to ensure the protection of information security. Third parties had access to over 23000 credit records relating to over 33000 bank customers including personal data such as names, citizenships, identification numbers, adresses, copies of identity cards and biometric data.
Cytaty prawne
Art. 32
Problemy i naruszenia
Insufficient technical and organisational measures to ensure information security