Hellenic Post (ΕΛΛΗΝΙΚΑ ΤΑΧΥΔΡΟΜΕΙΑ ΑΝΩΝΥΜΗ ΕΤΑΙΡΕΙΑ)
€2,995,140
Insufficient technical and organisational measures to ensure information security
Data decyzji
28 lutego 2024
Władza
Hellenic Data Protection Authority (HDPA)
GR
Sektor
Transportation and Energy
Kraj
GR
Prawo
GDPRStatus
FINALOpis
The Hellenic DPA has imposed a fine of EUR 2,995,140 on the Hellenic Post (ΕΛΛΗΝΙΚΑ ΤΑΧΥΔΡΟΜΕΙΑ ΑΝΩΝΥΜΗ ΕΤΑΙΡΕΙΑ). The controller had suffered a data breach which resulted in personal data being accessed and later published on the Dark Web. During its investigation, the DPA found that the controller had failed to implement appropriate technical and organizational measures to prevent such an incident.
Cytaty prawne
Art. 5 (1)Art. 32
Problemy i naruszenia
Insufficient technical and organisational measures to ensure information security