Open University of Cyprus

€45,000

Insufficient technical and organisational measures to ensure information security

Decision Date

22 de novembro de 2023

Authority

Cypriot Data Protection Commissioner

CY

Sector

Public Sector and Education

Country

CY

Law

GDPR

Status

FINAL

Description

The Cypriot DPA has imposed a fine of EUR 45,000 on Open University of Cyprus. The university had suffered a data breach involving hackers publishing personal data of students, alumni etc. on the dark web. During its investigation, the DPA found that the university had failed to implement appropriate technical and organizational measures to protect personal data.

Legal Citations

Art. 5Art. 32

Issues & Violations

Insufficient technical and organisational measures to ensure information security
View Official Document
Back to Fines Database
Previous Fine
Spanish Data Protection Authority (aepd) - VODAFON...
Next Fine
Data Protection Authority of Hamburg (HmbBfDI) - C...

Stay Updated on Privacy Enforcement

We respect your privacy. One email per month, no spam, unsubscribe anytime.