INFORMATION LEAK / Secret communication of socialist deputies about the protest is published

 Kliko këtu për të tjera
Voxpress:

Scandal/ The Italian government fines the bank 'Intesa San Paolo' with 32 million euros! (The data of over 3500 customers was hacked)

2026-04-24 13:49:53Fokus SHKRUAR NGA REDAKSIA VOX
Illustrative photo

The Italian Data Protection Authority has fined Intesa Sanpaolo SpA . 31.8 million euros for serious deficiencies in the security of personal data, resulting from insufficient technical and organizational measures.

The Authority's investigation launched following the data breach reported by the bank in July 2024 revealed that an employee accessed, without justification, the banking information of 3,573 customers, making over 6,600 searches between February 21, 2022 and April 24, 2024. These unauthorized accesses were not detected by internal control systems, highlighting significant weaknesses in monitoring and prevention mechanisms.

The illegal access also affected data related to “high-risk” customers, including individuals in public roles, for whom enhanced control measures would have been necessary.

The Authority found, in particular, a violation of the principles of integrity and confidentiality of personal data, as well as of the principle of accountability, noting the general inadequacy of the measures adopted.

The operating model used, which allowed operators to query the entire customer base in a completely circular manner, was not sufficiently balanced with controls designed to prevent and identify unwarranted access.

Scandal/ The Italian government fines the bank 'Intesa San Paolo' with

Other critical issues emerged in the management of the data breach. The notification was incomplete and delayed compared to the deadlines set by law, as was the communication with data subjects, which only occurred after a previous provision by the Authority dated 2 November 2024.

These practices compromised the Authority's ability to intervene promptly to protect the rights and freedoms of the individuals involved. In light of the violations found, the Authority considered Intesa Sanpaolo's conduct unlawful.

In determining the amount of the fine, the Authority took into account the severity and duration of the violations, the large number of clients involved, as well as the corrective measures adopted by the institution following the incidents, aimed at strengthening internal control systems and security measures./ Capital


Në përputhje me standarded JTI

Video

SHIKO KANALIN NE YOUTUBE
×