Caught out by their own documents #2

Dutch Data Protection Authority accidentally leaked its employees’ data
“When it comes to data leaks, the same procedures apply to all parties, including us,” Gras added. Still, Gras insisted that the blunder in question was relatively mild and did not require any formal notification.

“A data breach must be reported if it leads to serious adverse consequences for the protection of personal data, or if there is a significant chance that this will happen,” she stated.

So it appears that the leak was too insignificant to necessitate reporting it to themselves.

PDF problems again…

Author: Terry Madeley

I work with student data and enjoy reading about art and design, data, education and technology.