Food company

€100,000

Insufficient technical and organisational measures to ensure information security

Dátum rozhodnutia

24. októbra 2019

Úrad

Data Protection Authority of Baden-Wuerttemberg

DE

Sektor

Accomodation and Hospitality

Krajina

DE

Právo

GDPR

Stav

FINAL

Popis

The company had set up an applicant portal on its website where interested parties could submit their application documents online. However, the company did not offer an encrypted transmission of the data, nor did it store the applicant data in an encrypted or password-protected manner. In addition, the unsecured applicant data was linked to Google, so that anyone searching for the respective applicant names on Google could find their application documents and retrieve them without access restrictions.

Právne citácie

Art. 5Art. 32

Problémy a porušenia

Insufficient technical and organisational measures to ensure information security
Zobraziť oficiálny dokument
Späť na databázu pokút
Predchádzajúca pokuta
Hungarian National Authority for Data Protection a...
Ďalšia pokuta
Data Protection Authority of Hamburg (HmbBfDI) - C...

Aktualizujte informácie o presadzovaní ochrany osobných údajov

Rešpektujeme vaše súkromie. Jeden e-mail mesačne, žiadny spam, odhlásiť sa môžete kedykoľvek.