Unknown – €5,500 Fine (Slovenia, 2026)

€5,500Informacijski pooblaščenec16 February 2026Slovenia
final
Fine

General GDPR enforcement action

This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.

The Slovenian data protection authority fined an unknown company EUR 5,500 for failing to secure customer data properly. This is significant because it shows that companies must take data security seriously to avoid breaches. Small businesses should implement strong security measures to protect customer information.

What happened

An unknown company allowed employees unnecessary access to customer data, leading to a data breach.

Who was affected

Customers whose data was improperly accessed were affected by this breach.

What the authority found

The authority found that the company did not implement adequate security measures, violating GDPR requirements.

Why this matters

This case emphasizes the need for businesses to establish proper data security protocols. Companies should regularly review their access policies to prevent unauthorized data access.

GDPR Articles Cited

AI-verified

Art. 32(GDPR)
View original scraped data
Art. 32(GDPR)

Original data from scraper before AI verification against source document.

Source verified 29 April 2026
articles corrected
entity split needed
Slovenia enforcementInformacijski pooblaščenec actionsAll Unknown actions
Full Legal Summary
Detailed

The Slovenian DPA has imposed a fine of EUR 5,500 on a unkonwn company and a responsible person within the company. The controller failed to implement adequate technical and organisational measures to ensure data security by giving employees access to customer data that was not necessary for them to fulfil their duties. This resulted in a data breach. Additionally, the controller had been warned regarding the information obligations under Art. 12 and Art. 13 GDPR. The fine had been split up into a fine in the amount of EUR 5,400 for the company and EUR 100 for the employee responsible.

Related Enforcement Actions (1)

Other enforcement actions involving Unknown in SI

Fine
Jan 2026· Informacijski pooblaščenec

The Slovenian DPA has imposed a fine of EUR 4,850 on a unkonwn company and a responsible person within the company. The controller operated a testenfi...

€5K
Current
Feb 2026

Fine

€6K

Details

Fine Date

16 February 2026

Authority

Informacijski pooblaščenec

Fine Amount

€5,500

Enforcement Tracker ID

ETid-1245

Sources

About this data

Data: CMS GDPR Enforcement Tracker
Licensed under CC BY-NC-SA 4.0
AI-verified and classified

Cite as: Cookie Fines. Unknown - Slovenia (2026). Retrieved from cookiefines.eu

Report Inaccuracy

Last updated: