The Privacy Guarantor has fined the Order of Psychologists of the Lombardy Region €30,000 due to inadequate technical and organizational measures for data security. This decision followed a sophisticated ransomware attack that compromised sensitive personal data belonging to members and patients. Despite threats of discrimination and identity theft, the integrity of the data was preserved and recovered through backup systems. The investigation highlighted the Order's failure to implement timely detection and security measures, although their subsequent compliance improvements were noted.
The Privacy Guarantor fined the Order of Psychologists of Lombardy €30,000 for failing to implement adequate data security measures after a sophisticated ransomware attack.
The ransomware attack led to unauthorized access to sensitive personal data, exposing individuals to risks of discrimination, identity theft, and various social prejudices.
Despite the breach and the subsequent data publication on the dark web, personal data integrity was maintained, which the Order managed to recover through backups.
The Guarantor's investigation concluded that the Order had not taken sufficient actions to ensure data processing security and detect personal data violations promptly.
Collection
[
|
...
]