Maynooth University
€40,000
Insufficient technical and organisational measures to ensure information security
Dátum rozhodnutia
22. novembra 2024
Úrad
Data Protection Authority of Ireland
IE
Sektor
Public Sector and Education
Krajina
IE
Právo
GDPRStav
FINALPopis
The Irish DPA has imposed a fine of EUR 40,000 on Maynooth University. The controller failed to implement adequate technical and organisational measures, resulting in an unauthorised third party gaining access to multiple employees' email accounts, which the third party then used for fraudulent purposes.
Právne citácie
Art. 5 (1)Art. 32 (1)Art. 33 (1)
Problémy a porušenia
Insufficient technical and organisational measures to ensure information security