24/7 Communication Sp. z o.o.

€43,000

Insufficient technical and organisational measures to ensure information security

決定日期

2025年7月21日

權限

Polish National Personal Data Protection Office (UODO)

PL

部門

Employment

國家

PL

法律

GDPR

狀態

FINAL

說明

The Polish DPA has imposed a fine of EUR 43,000 on 24/7 Communication Sp. z o.o. The fined entity acted as the data processor for McDonald’s Polska Sp. z o.o. (see ETid: 2757). The processor failed to implement sufficient technical and organisational measures to ensure data security, resulting in a data breach. The controller additionally infringed the principle of data minimisation and failed to adequately involve the DPO in relevant activities.

法律引文

Art. 5 (1)Art. 25 (1)Art. 38 (1)

問題與違規

Insufficient technical and organisational measures to ensure information security
檢視正式文件
返回罰款資料庫
上一個精細
Polish National Personal Data Protection Office (U...
下一個精細
Data Protection Authority of Hamburg (HmbBfDI) - C...

保持最新的隱私權執法資訊

我們尊重您的隱私。每月一封電子郵件,無垃圾郵件,可隨時取消訂閱。