Company – €3,400 Fine (Poland, 2023)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
A company in Poland was fined after a laptop containing personal data was stolen from an employee's car. This matters because it highlights the importance of protecting personal data with proper security measures. Businesses need to ensure their devices are secure to avoid data breaches.
What happened
A company reported a data breach after a laptop with personal data was stolen from a car.
Who was affected
Three individuals whose personal data was stored on the stolen laptop.
What the authority found
The Polish DPA found that the company failed to implement adequate security measures to protect personal data.
Why this matters
This case serves as a warning for companies to enhance their data protection practices. It shows that neglecting security can lead to fines and data breaches.
GDPR Articles Cited
The Polish DPA has imposed a fine of EUR 3,400 on a company. The controller had reported a data breach to the DPA. The company car of a senior employee had been broken into, resulting in the theft of a company laptop on which personal data of three persons were processed. During its investigation, the DPA determined that the controller had failed to implement appropriate technical and organizational measures to protect personal data. Among other things, the laptop had not been properly encrypted.
Related Enforcement Actions (8)
Other enforcement actions involving Company in PL
Fine
€3K
Details
Fine Date
18 July 2023
Authority
Urząd Ochrony Danych Osobowych
Fine Amount
€3,400
Enforcement Tracker ID
ETid-2082
About this data
Cite as: Cookie Fines. Company - Poland (2023). Retrieved from cookiefines.eu
Last updated: