ING Bank N.V.
Ej tillgänglig
Insufficient technical and organisational measures to ensure information security
Datum för beslut
28 november 2019
Myndighet
Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)
RO
Sektor
Finance, Insurance and Consulting
Land
RO
Lag
GDPRStatus
FINALBeskrivning
Original Fine Summary: ING Bank has not taken appropriate technical and organisational measures for an automated data processing system during the settlement process of card transactions affecting 225,525 customers, resulting in double transactions being executed between 8 and 10 October. Update: The Bucharest Court of Appeal overturned the fine of EUR 80,000.
Rättsliga hänvisningar
Art. 32
Frågor och överträdelser
Insufficient technical and organisational measures to ensure information security