Details:

Summary A printed customer list of an accounting firm, which also contained personal data, could be accessed by unauthorized persons.
Link: link
Related articles:  Art. 24 GDPR, Art. 32 GDPR
Type: Insufficient technical and organisational measures to ensure information security
Fine: EUR 1,450
Sector Finance, Insurance and Consulting

 

All data is based on The CMS’s Law GDPR Enforcement Tracker Source: https://www.enforcementtracker.com/

Tags: case law