Sambla Group Oy – €950,000 Fine (Finland, 2024)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
Sambla Group Oy was fined €950,000 because security issues on its comparison portals let unauthorized people access personal information of credit applicants. This matters because it shows the importance of keeping user data safe and secure. Companies need to take security seriously to protect their customers' information.
What happened
Sambla Group Oy allowed unauthorized access to personal data due to security vulnerabilities on its comparison portals.
Who was affected
Credit applicants whose personal information, such as income and marital status, was exposed.
What the authority found
The Finnish DPA found that Sambla Group Oy violated GDPR by failing to implement adequate security measures to protect personal data.
Why this matters
This case highlights the financial consequences of inadequate data security. Businesses must prioritize data protection to avoid hefty fines and protect customer trust.
GDPR Articles Cited
View original scraped data
Original data from scraper before AI verification against source document.
The Finnish DPA has imposed a fine of EUR 950,000 on Sambla Group Oy. Security vulnerabilities in two of its comparison portals allowed unauthorized persons to access personal data, such as income, housing costs, and marital status of credit applicants, via unsecured links.
Related Enforcement Actions (0)
No other enforcement actions found for Sambla Group Oy in FI
This is the only recorded action for this entity in this jurisdiction.
Details
Fine Date
17 December 2024
Authority
Tietosuojavaltuutetun toimisto
Fine Amount
€950,000
About this data
Cite as: Cookie Fines. Sambla Group Oy - Finland (2024). Retrieved from cookiefines.eu
Last updated: