Back to Cases
technologyfinance · 2022
An Austrian bank
The DSB fined an Austrian bank €1.2 million for retaining former customer data beyond the required retention period, and for failing to implement adequate access controls that led to an internal data breach where employee data was accessible to unauthorised staff.
Fine Imposed€1.2M
Authority
DSB
Regulation
Key Takeaways
- Banks must implement strict data retention schedules and access controls for both customer and employee data.