Enforcement

€5,000 fine - Data Protection Commissioner of Malta

The controller unlawfully gained access to audio recordings from a surveillance camera.

€2,500 fine - Data Protection Commissioner of Malta

Multiple data protection shortcomings

€65,000 fine - Data Protection Commissioner of Malta

The DPA of Malta has imposed a fine of EUR 65,000 on C-Planet (IT Solutions) Limited. The DPA had initiated an investigation against C-Planet in April 2020 after being informed of a data breach. The DPA noted as a result that C-Planet had violated Art. 6 (1) GDPR, Art. 9 (1), (2) GDPR, Art. 14 GDPR and Art. 5 (1) f) GDPR in the context of data processing. The DPA also found that C-Planet failed to implement appropriate technical and organizational measures to ensure a level of security commensur

€250,000 fine - Data Protection Commissioner of Malta

The controller has failed to implement appropriate technical and organizational measures to protect personal data.

€65,000 fine - Data Protection Commissioner of Malta

The controller has violated numerous GDPR regulations, involving special categories of personal data of numerous individuals.

€2,500 fine - Data Protection Commissioner of Malta

The controller has unlawfully disclosed personal data of a data subject.

€2,000 fine - Data Protection Commissioner of Malta

A third party has gained unauthorized access to another person's account.

€5,000 fine - Data Protection Commissioner of Malta

The controller has unlawfully disclosed personal data of a data subject.

€2,500 fine - Data Protection Commissioner of Malta

The controller has disclosed a personal email address to all recipients of the email.

€4,000 fine - Data Protection Commissioner of Malta

The controller had sent unsolicited commercial messages. In addition, the privacy policy did not comply with transparency requirements and the controller failed to comply with requests for information from data subjects.

€2,500 fine - Data Protection Commissioner of Malta

The controller has disclosed a personal email address to all recipients of the email.

€2,500 fine - Data Protection Commissioner of Malta

Accidental loss of personal data.

€20,000 fine - Data Protection Commissioner of Malta

The controller failed to comply with a data subject's right to information. In addition, the data protection policy did not meet the transparency requirements.

€5,000 fine - Data Protection Commissioner of Malta

As a result of the lack of appropriate security measures on the Lands Authority website, over 10 gigabytes of personal data became easily accessible to the public via a simple google search. The majority of the leaked data contained highly-sensitive information and correspondence between individuals and the Authority itself. The Lands Authority chose not to appeal. In Malta, in the case of a breach by a public authority or body, the Data Protection Commissioner may impose an administrative fine