ACTIVE ASSURANCES (car insurer)

€180,000

Insufficient technical and organisational measures to ensure information security

Dátum rozhodnutia

25. júla 2019

Úrad

French Data Protection Authority (CNIL)

FR

Sektor

Finance, Insurance and Consulting

Krajina

FR

Právo

GDPR

Stav

FINAL

Popis

Large amount of customer accounts, clients' documents (including copies of driver's licences, vehicle registration, bank statements and documents to determine whether a person had been the subject of a licence withdrawal) and data were easily accesible online. The CNIL, between others, critizised the password management (unauthorized access was possible without any authentication).

Právne citácie

Art. 32

Problémy a porušenia

Insufficient technical and organisational measures to ensure information security
Zobraziť oficiálny dokument
Späť na databázu pokút
Predchádzajúca pokuta
Hungarian National Authority for Data Protection a...
Ďalšia pokuta
Data Protection Authority of Hamburg (HmbBfDI) - C...

Aktualizujte informácie o presadzovaní ochrany osobných údajov

Rešpektujeme vaše súkromie. Jeden e-mail mesačne, žiadny spam, odhlásiť sa môžete kedykoľvek.