Continue reading on DataGuidance with:
Free Member
Limited ArticlesCreate an account to continue accessing select articles, resources, and guidance notes.
Already have an account? Log in
Create an account
Join our community for free to access exclusive whitepapers, reports, and regulatory information.
Faroe Islands: Authority orders Environment Agency to adopt technical and organisational measures following data breach
The Faroe Islands Data Protection Authority ('the Authority') published, on 7 July 2021, its decision in Case No. 21/12774-9, as issued on the same day, in which it ordered the Faroe Islands Environment Agency to implement technical and organisational measures, for violations regarding the security of processing under Act No. 80 of 7 June 2020 on the Protection of Personal Data ('the Act'), following the notification of a personal data breach.
Background to the case
In particular, the Authority reported that it had received a notification of a personal data breach.
Findings of the Authority
Further to the above, the Authority held that, as a result of the investigation carried out, it had verified that some documents containing personal data had become available on the Environment Agency's website, in relation to the registration system for houses and vehicles.
Outcomes
In conclusion, the Authority ordered the Environment Agency to implement technical and organisational measures to prevent the reoccurrence of personal data breaches, as well as to announce the security incident on its website.
You can read the press release here and the decision here, both only available in Danish.
Send us your Feedback!
Please let us know what you think of DataGuidance! It will only take 60 seconds and help us make the site better for you.
