Dublin education board fined EUR125,000 for GDPR breach
MLex: Ireland’s Data Protection Commission (DPC) has fined the City of Dublin Education and Training Board (CDETB) 125,000 euros, after finding multiple GDPR breaches linked to a data breach in 2018 that affected around 13,000 student grant applicants, whose personal data were exposed on a malware-infected webserver. CDETB had failed to implement proper security measures, didn’t notify the DPC or affected individuals on time, and ignored a direct order to notify data subjects, the watchdog said.