SIRIUS (law firm)

€67,200

Insufficient technical and organisational measures to ensure information security

Data deciziei

14 iulie 2022

Autoritatea

Danish Data Protection Authority (Datatilsynet)

DK

Sector

Finance, Insurance and Consulting

Țara

DK

Legea

GDPR

Statut

FINAL

Descriere

The Danish DPA has imposed a fine of EUR 67,200 on the law firm SIRIUS. The law firm had suffered a cyber attack in which hackers gained access to the firm's servers and encrypted them. This gave them access to information about the firm's clients and business partners. During its investigation, the DPA found that the law firm lacked basic security measures, which increased the risk of unauthorized access to client data. The firm's systems, for example, did not contain sufficient verification measures, such as multi-factor logins.

Citări juridice

Art. 32

Probleme și încălcări

Insufficient technical and organisational measures to ensure information security
Vezi documentul oficial
Înapoi la baza de date a amenzilor
Amenda anterioară
Information Commissioner of Isle of Man - Manx Car...
Următoarea amendă
Data Protection Authority of Hamburg (HmbBfDI) - C...

Rămâneți la curent cu aplicarea normelor de confidențialitate

Îți respectăm confidențialitatea. Un e-mail pe lună, fără spam, dezabonare oricând.