government healthcare social media service provider fine education finance dark web retail law enforcement web telecoms travel manufacturing phama operating system insurance legal charity app tech gaming publishing transport utilities
story hacked malware unauthorised access ransomware vulnerability accidental disclosure phishing unsecured database poor security insider threat unsecured server hacked email lost device identity theft website hacked ddos stolen documents Trojans financial inside job spear phishing RDP skimming spyware
cyber attack privacy breach notification security flaw legislation poor operations user credentials physical security customer data third party Cryptocurrency enforcement email hacked insecure storage court action encryption fraud VPN passwords zero day 3rd parties state hacking employee data remote working stolen data

Creditor fined 870 Euros for breaching Art. 5 GDPR, Art. 6 GDPR - Insufficient legal basis for data processing
Vis Consulting Sp. z o.o. fined 4,400 Euros for breaching Art. 31 GDPR, Art. 58 GDPR - Insufficient cooperation with supervisory authority
Gesthotel Activos Balagares fined 15,000 Euros for breaching Art. 5 (1) f) GDPR - Non-compliance with general data processing principles
Retailer fined 3,200 Euros for breaching Art. 13 GDPR, Art. 14 GDPR - Insufficient fulfilment of information obligations
Private person fined 4,000 Euros for breaching Art. 5 GDPR - Non-compliance with general data processing principles
Liceo Scientifico Nobel di Torre del Greco fined 4,000 Euros for breaching Art. 5 GDPR, Art. 6 GDPR, Art. 9 GDPR - Insufficient legal basis for data processing
Liceo Artistico Statale di Napoli fined 4,000 Euros for breaching Art. 5 GDPR, Art. 6 GDPR, Art. 9 GDPR - Insufficient legal basis for data processing
San Giorgio Jonico fined 3,000 Euros for breaching Art. 5 GDPR, Art. 6 GDPR, Art. 17 GDPR - Insufficient legal basis for data processing
Representative of a local government fined 290 Euros for breaching Art. 5 GDPR, Art. 6 GDPR, Art. 12 GDPR, Art. 15 GDPR, Art. 17 GDPR - Insufficient legal basis for data processing
Vodafone España, S.A.U. fined 60,000 Euros for breaching Art. 5 GDPR, Art. 6 GDPR - Insufficient legal basis for data processing
Cathay Pacific Airways Limited £500,000 for failing to protect the security of its customers’ personal data
Vodafone España, S.A.U. fined 24,000 Euros for breaching Art. 5 GDPR, Art. 6 GDPR - Insufficient legal basis for data processing
Vodafone España, S.A.U. fined 40,000 Euros for breaching Art. 5 GDPR, Art. 6 GDPR - Insufficient legal basis for data processing
Vodafone España, S.A.U. fined 42,000 Euros for breaching Art. 5 (1) f) GDPR, Art. 32 GDPR - Insufficient technical and organisational measures to ensure information security
Solo Embrague fined 1,800 Euros for breaching Art. 13 GDPR - Insufficient fulfilment of information obligations
Royal Dutch Tennis Association ('KNLTB') fined 525,000 Euros for breaching Art. 5 GDPR, Art. 6 GDPR - Insufficient legal basis for data processing
Health Care Provider Pays $100,000 Settlement to OCR for Failing to Implement HIPAA Security Rule Requirements
Quest Data Breach Class Action Settlement
Records reveal City of Cartersville paid ransomware attackers $380K
Coop Finnmark SA fined 0 Euros for breaching Art. 5 GDPR, Art. 6 GDPR - Insufficient legal basis for data processing
AEMA Hispánica fined 3,600 Euros for breaching Art. 5 (1) f) GDPR - Non-compliance with general data processing principles
Vodafone ONO, S.A.U. fined 48,000 Euros for breaching Art. 32 GDPR - Insufficient technical and organisational measures to ensure information security
Vodafone España, S.A.U. fined 120,000 Euros for breaching Art. 5 GDPR, Art. 6 GDPR - Insufficient legal basis for data processing
Nigerian man arrested 3 years after $850,000 stolen from Boulder Valley School District
Rælingen Municipality fined 0 Euros for breaching Art. 5 (1) f) GDPR, Art. 32 GDPR - Insufficient technical and organisational measures to ensure information security
Casa Gracio Operation fined 6,000 Euros for breaching Art. 5 (1) c) GDPR - Non-compliance with general data processing principles
HM Hospitales fined 48,000 Euros for breaching Art. 5 GDPR, Art. 6 GDPR - Insufficient legal basis for data processing
Public Power Corporation S.A. fined 5,000 Euros for breaching Art. 15 GDPR - Insufficient fulfilment of data subjects rights
Mymoviles Europa 2000, S.L. fined 1,500 Euros for breaching Art. 13 GDPR - Insufficient fulfilment of information obligations
Xfera Moviles S.A. fined 30,000 Euros for breaching Art. 5 (1) f) GDPR, Art. 32 GDPR - Insufficient technical and organisational measures to ensure information security
Vodafone España, S.A.U. fined 42,000 Euros for breaching Art. 5 (1) f) GDPR, Art. 32 GDPR - Insufficient technical and organisational measures to ensure information security
Iberdrola Clientes fined 80,000 Euros for breaching Art. 6 GDPR - Insufficient legal basis for data processing
Colegio Arenales Carabanchel (School) fined 3,000 Euros for breaching Art. 6 GDPR - Insufficient legal basis for data processing
Grupo Valsor Y Losan, S.L. fined 2,500 Euros for breaching Art. 5 (1) f) GDPR - Insufficient technical and organisational measures to ensure information security
Comune di Urago fined 4,000 Euros for breaching Art. 5 GDPR, Art. 6 GDPR - Insufficient legal basis for data processing
Puerto Rico Hospital Operators Hit with Class Action Over February 2019 Data Breach
RTI - Reti Televisive Italiane s.p.a. fined 20,000 Euros for breaching Art. 5 GDPR, Art. 6 GDPR - Insufficient legal basis for data processing
Cafetería Nagasaki fined 1,500 Euros for breaching Art. 5 GDPR, Art. 6 GDPR - Insufficient legal basis for data processing
Automoción fined 800 Euros for breaching Art. 5 GDPR, Art. 6 GDPR - Insufficient legal basis for data processing
Queseria Artesenal Ameco S.L. fined 5,000 Euros for breaching Art. 5 GDPR, Art. 6 GDPR - Insufficient legal basis for data processing