SERGIC SAS – Court Ruling (France, 2020)
The French Conseil d'Etat upheld a €400,000 fine against SERGIC for poor data security and retaining personal data longer than necessary. The ruling confirmed that the CNIL can download publicly exposed data during investigations and impose fines without prior notice. This case stresses the importance of data security and compliance with data retention rules.
What happened
SERGIC was fined €400,000 for inadequate data security and keeping personal data longer than needed.
Who was affected
Individuals whose personal information was exposed online due to SERGIC's security flaws.
What the authority found
The Conseil d'Etat confirmed the CNIL's right to conduct online investigations and impose fines without prior notice.
Why this matters
This ruling highlights that companies must ensure robust data security and adhere to data retention limits. It also clarifies that regulatory bodies can act swiftly against breaches without warning.
GDPR Articles Cited
National Law Articles
The case involved data security and storage limitation issues, not related to cookies or consent mechanisms.
Outcome
Court Ruling
A ruling by a national court on a data-protection matter.
Related Cases (1)
Other cases involving SERGIC SAS in FR
Details
Ruling Date
4 November 2020
Authority
Commission Nationale de l'Informatique et des Libertés
GDPRhub ID
gdprhub-court-2856About this data
Cite as: Cookie Fines. SERGIC SAS - France (2020). Retrieved from cookiefines.eu
Last updated: