President of the Zgierz District Court

€2,200

Insufficient technical and organisational measures to ensure information security

Datum odločitve

13. avgust 2021

Organ

Polish National Personal Data Protection Office (UODO)

PL

Sektor

Public Sector and Education

Država

PL

Zakon

GDPR

Status

FINAL

Opis

The Polish DPA (UODO) has imposed a fine of EUR 2,200 on the president of the Zgierz District Court. The president had reported a data breach involving the loss of an unencrypted USB stick by a probation officer. The data medium stored the data of 400 persons under probation supervision. The lost and at the same time unsecured data carrier has not yet been found, so that unauthorized persons could still have access to the personal data it contained. The president had assumed that the duty to secure the data did not lie with himself, but with the respective probation officers who had these data in use. However, the DPA found that the president himself should have secured the USB sticks.

Pravne navedbe

Art. 5 (1)Art. 25 (1)Art. 32 (1)

Vprašanja in kršitve

Insufficient technical and organisational measures to ensure information security
Oglejte si uradni dokument
Nazaj v zbirko podatkov o globah
Prejšnja globa
Spanish Data Protection Authority (aepd) - Employe...
Naslednja Drobna
Data Protection Authority of Hamburg (HmbBfDI) - C...

Spremljajte novice o uveljavljanju zasebnosti

Spoštujemo vašo zasebnost. Eno e-poštno sporočilo na mesec, brez neželene pošte, odjava kadar koli.