Central Young Men’s Christian Association
€8,700
Insufficient technical and organisational measures to ensure information security
決定日期
2024年4月30日
權限
Information Commissioner (ICO)
GB
部門
Individuals and Private Associations
國家
GB
法律
GDPR狀態
FINAL說明
The UK DPA (ICO) has fined the Central Young Men’s Christian Association EUR 8,700. The controller had sent an email to individuals participating in a program for individuals suffering from HIV without using the blind copy option, which made the email addresses of all recipients known to other recipients. 166 individuals could be identified or potentially identified based on their email addresses. From this it could be concluded that these people were probably living with HIV.
法律引文
Art. 5 (1)Art. 32 (1)
問題與違規
Insufficient technical and organisational measures to ensure information security