Breiðholt Upper Secondary School – €9,000 Fine (Iceland, 2020)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
A school in Iceland was fined €9,000 because a teacher sent an email with sensitive student information to students and their parents. This matters because it shows how important it is to protect personal data, especially in educational settings.
What happened
A teacher at Breiðholt Upper Secondary School sent an email containing sensitive student information to students and their parents.
Who was affected
Students and their parents who received the email with sensitive information.
What the authority found
The Icelandic data protection authority found that the school failed to protect personal data, violating GDPR's security requirements.
Why this matters
This case highlights the need for schools and educational institutions to handle student data with care and ensure it is not shared improperly. It serves as a reminder to review data protection practices regularly.
GDPR Articles Cited
In violation of Art. 32 GDPR, a teacher had sent an e-mail to his students and their parents with an attachment containing data on their well-being, academic performance and social conditions.
Related Enforcement Actions (0)
No other enforcement actions found for Breiðholt Upper Secondary School in IS
This is the only recorded action for this entity in this jurisdiction.
Details
Fine Date
10 March 2020
Authority
Persónuvernd
Fine Amount
€9,000
Enforcement Tracker ID
ETid-234
About this data
Cite as: Cookie Fines. Breiðholt Upper Secondary School - Iceland (2020). Retrieved from cookiefines.eu
Last updated: