CAJA RURAL DE SALAMANCA, S.C.C.
€200,000
Non-compliance with general data processing principles
Ngày ra quyết định
17 tháng 1, 2025
Thẩm quyền
Spanish Data Protection Authority (aepd)
ES
Ngành
Finance, Insurance and Consulting
Quốc gia
ES
Luật
GDPRTrạng thái
FINALMô tả
The Spanish DPA has imposed a fine on CAJA RURAL DE SALAMANCA, S.C.C.. The controller had suffered a cyber attack in which the attackers were able to access customer data due to a security vulnerability in its systems. The DPA found that the company had failed to implement the necessary security measures that could have prevented such an incident. The original fine of EUR 250,000 was reduced to EUR 200,000 due to voluntary payment.
Trích dẫn pháp lý
Art. 5 (1)
Vấn đề & Vi phạm
Non-compliance with general data processing principles