Aid organization

Ej tillgänglig

Insufficient technical and organisational measures to ensure information security

Datum för beslut

1 januari 2022

Myndighet

Data Protection Authority of Brandenburg

DE

Sektor

Individuals and Private Associations

Land

DE

Lag

GDPR

Status

FINAL

Beskrivning

The DPA of Brandenburg has imposed a five-figure fine on an aid organization. The aid organization provides transportation for people with illnesses. The organization had reported a data breach to the DPA in which data of data subjects had been published due to a hack. At the time of the attack, the controller's database contained more than 80,000 records with data that included information about the health status of the data subjects. During its investigation, the DPA found that the bank had failed to take adequate technical and organizational measures to protect personal data, which allowed such a breach to occur. In addition, the DPA found that the bank had failed to conclude a processing agreement with its processors.

Rättsliga hänvisningar

Art. 28 (3)Art. 32

Frågor och överträdelser

Insufficient technical and organisational measures to ensure information security
Visa officiellt dokument
Tillbaka till databasen för böter
Föregående Fine
Data Protection Authority of Brandenburg - Operato...
Nästa Fine
Data Protection Authority of Hamburg (HmbBfDI) - C...

Håll dig uppdaterad om efterlevnaden av sekretessreglerna

Vi respekterar din integritet. Ett e-postmeddelande per månad, ingen skräppost, avsluta prenumerationen när som helst.