DSK Bank
€511,000
Insufficient technical and organisational measures to ensure information security
Dátum rozhodnutia
28. augusta 2019
Úrad
Data Protection Commision of Bulgaria (KZLD)
BG
Sektor
Finance, Insurance and Consulting
Krajina
BG
Právo
GDPRStav
FINALPopis
Leakage of personal data due to inadequate technical and organisational measures to ensure the protection of information security. Third parties had access to over 23000 credit records relating to over 33000 bank customers including personal data such as names, citizenships, identification numbers, adresses, copies of identity cards and biometric data.
Právne citácie
Art. 32
Problémy a porušenia
Insufficient technical and organisational measures to ensure information security