Polish insurer Warta fined EUR20,000 for GDPR violation

( December 29, 2020, 11:22 GMT | Official Statement) -- MLex Summary: Polish insurance company Warta has been fined 20,000 euros for violating the EU's strict General Data Protection Regulation by not reporting a data breach within 72 hours and for not notifying data subjects in a timely manner, the Polish Personal Data Protection Office UODO said today. The incident arose after Warta's agent sent an insurance policy containing two people's personal data to an incorrect e-mail address provided by the customer, which inadvertently ended up in the possession of a third party. UODO also said that Warta should have taken extra steps to protect the data sent electronically, and independently verified the e-mail address.Statement in Polish follows. The decision in Polish is attached....

Prepare for tomorrow’s regulatory change, today

MLex identifies risk to business wherever it emerges, with specialist reporters across the globe providing exclusive news and deep-dive analysis on the proposals, probes, enforcement actions and rulings that matter to your organization and clients, now and in the longer term.

Know what others in the room don’t, with features including:

Daily newsletters for Antitrust, M&A, Trade, Data Privacy & Security, Technology, AI and more
Custom alerts on specific filters including geographies, industries, topics and companies to suit your practice needs
Predictive analysis from expert journalists across North America, the UK and Europe, Latin America and Asia-Pacific
Curated case files bringing together news, analysis and source documents in a single timeline

Experience MLex today with a 14-day free trial.

Start Free Trial

Already a subscriber? Click here to login

Polish insurer Warta fined EUR20,000 for GDPR violation

Prepare for tomorrow’s regulatory change, today

Documents

Related Sections