Santander fined in Poland for failure to notify staff of payroll data breach

( February 22, 2022, 15:26 GMT | Official Statement) -- MLex Summary: Poland’s Personal Data Protection Office has fined Santander Bank Poland 545,000 złoty ($136,000) for its failure to notify staff that a former employee had unauthorized access to their payroll data. The bank notified the authority that a former employee still had unauthorized access to payroll data after leaving, and had accessed the system five times since his departure. However, the bank didn’t notify the data subjects because it didn’t believe the unauthorized access posed a significant risk of harm. But the national privacy watchdog concluded that the risk of negative consequences was high and that Santander should have contacted each data subject directly.The statement follows in Polish. The decision, also in Polish, is attached....

Prepare for tomorrow’s regulatory change, today

MLex identifies risk to business wherever it emerges, with specialist reporters across the globe providing exclusive news and deep-dive analysis on the proposals, probes, enforcement actions and rulings that matter to your organization and clients, now and in the longer term.

Know what others in the room don’t, with features including:

Daily newsletters for Antitrust, M&A, Trade, Data Privacy & Security, Technology, AI and more
Custom alerts on specific filters including geographies, industries, topics and companies to suit your practice needs
Predictive analysis from expert journalists across North America, the UK and Europe, Latin America and Asia-Pacific
Curated case files bringing together news, analysis and source documents in a single timeline

Experience MLex today with a 14-day free trial.

Start Free Trial

Already a subscriber? Click here to login

Santander fined in Poland for failure to notify staff of payroll data breach

Prepare for tomorrow’s regulatory change, today

Documents

Related Sections