CAJA RURAL GRANADA, S.C.C.
€12,000
Non-compliance with general data processing principles
Дата прийняття рішення
17 січня 2025 р.
Влада
Spanish Data Protection Authority (aepd)
ES
Сектор
Finance, Insurance and Consulting
Країна
ES
Право
GDPRСтатус
FINALОпис
The Spanish DPA has imposed a fine on CAJA RURAL GRANADA, S.C.C.. The controller had suffered a cyber attack in which the attackers were able to access customer data due to a security vulnerability in its systems. The DPA found that the company had failed to implement the necessary security measures that could have prevented such an incident. The original fine of EUR 15,000 was reduced to EUR 12,000 due to voluntary payment.
Юридичні посилання
Art. 5 (1)
Проблеми та порушення
Non-compliance with general data processing principles