Maynooth University
€40,000
Insufficient technical and organisational measures to ensure information security
Data da decisão
22 de novembro de 2024
Autoridade
Data Protection Authority of Ireland
IE
Setor
Public Sector and Education
País
IE
Lei
GDPRStatus
FINALDescrição
The Irish DPA has imposed a fine of EUR 40,000 on Maynooth University. The controller failed to implement adequate technical and organisational measures, resulting in an unauthorised third party gaining access to multiple employees' email accounts, which the third party then used for fraudulent purposes.
Citações legais
Art. 5 (1)Art. 32 (1)Art. 33 (1)
Problemas e violações
Insufficient technical and organisational measures to ensure information security