Basic Search
|
Summaries
|
Advanced Search
Violation Tracker UK Individual Case
Company: Optionis Group Limited
Penalty: £0
Year: 2023
Date: 10 October, 2023
Offence Group: consumer-protection-related offences
Offence Type: privacy violation
Violation Description: The data controller suffered a ransomware attack, which resulted in the exfiltration of personal data. A reprimand was issued in respect of specific infringements of the UK GDPR, which include lack of multi-factor authentication, an inadequate account lockout policy, and no clear Bring Your Own Device policy.
Agency: Information Commissioner's Office
Source of Data:
(click here)