Municipality

€6,700

Insufficient technical and organisational measures to ensure information security

決定日期

2023年5月16日

權限

Polish National Personal Data Protection Office (UODO)

PL

部門

Public Sector and Education

國家

CZ

法律

GDPR

狀態

FINAL

說明

The Polish DPA has imposed a fine of EUR 6,700 on a municipality. The controller had reported a data breach to the DPA. During its investigation, the DPA found that the controller had suffered a ransomware attack, in which the attackers took advantage of a vulnerability present in the IT system. The DPA found that the controller had failed to install adequate technical and organizational measures to protect personal data, allowing such an attack to occur.

法律引文

Art. 5 (1)Art. 5 (2)Art. 24 (1)Art. 25 (1)Art. 32 (1)

問題與違規

Insufficient technical and organisational measures to ensure information security
檢視正式文件
返回罰款資料庫
上一個精細
Romanian National Supervisory Authority for Person...
下一個精細
Data Protection Authority of Hamburg (HmbBfDI) - C...

保持最新的隱私權執法資訊

我們尊重您的隱私。每月一封電子郵件,無垃圾郵件,可隨時取消訂閱。