UNICREDIT BANK SA
€130,000
Insufficient technical and organisational measures to ensure information security
Data deciziei
27 iunie 2019
Autoritatea
Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)
RO
Sector
Finance, Insurance and Consulting
Țara
RO
Legea
GDPRStatut
FINALDescriere
The fine was issued as a result of the failure to implement appropriate technical and organisational measures (related to (1) the determination of the processing means/operations, and (2) the integration the necessary safeguards) resulting in the online-disclosure of IDs and addresses (interla/external transactions) of 337,042 data subjects to their respective beneficiary (between 25.05.2018 -10.12.2018).
Citări juridice
Art. 25 (1)Art. 5 (1)
Probleme și încălcări
Insufficient technical and organisational measures to ensure information security