Swedish DPA fines Trygg-Hansa $3.2M for GDPR breaches
By 
Kyle Brasseur2023-08-31T16:55:00
Sweden’s data protection authority (DPA) issued a penalty of 35 million Swedish krona (U.S. $3.2 million) against insurance company Trygg-Hansa for alleged security flaws that made customer insurance information accessible on the internet.
The issue occurred in November 2020 at Moderna Försäkringar, which Trygg-Hansa merged with in April 2022, the company said in a translated clarifying statement. Trygg-Hansa said the issue did not affect its customers.
The Swedish DPA said in a translated press release Wednesday its review, informed by a customer tip, found the data of 650,000 Moderna Försäkringar customers was left accessible from October 2018 to February 2021. The tipster “noticed that it was possible to access other policyholders’ documents, without any kind of login, by simply replacing a few numbers in the web link,” according to the regulator.
Related articles
-
News BriefAxpo Italia fined $10.5M in GDPR case over data processing
Axpo Italia, a producer and trader of renewable energy products, was penalized under the General Data Protection Regulation by the Italian data protection authority for processing inaccurate and outdated personal data of customers.
-
News BriefEOS Matrix battles back against Croatian DPA in $5.8M GDPR case
Debt collector EOS Matrix said it will challenge a General Data Protection Regulation penalty levied against it by the Croatian data protection authority after finding the data in question in the case does not match the data in its database.
-
PremiumPressure on DPAs to ensure success of GDPR cross-border proposal
Plans to speed up General Data Protection Regulation cases against the likes of Big Tech firms by improving cooperation among the European Union’s data regulators have been largely welcomed by experts.
More from Regulatory Enforcement
-
News BriefCompliance concerns surface at Fannie Mae following internal probe
A probe into Fannie Mae uncovered compliance and governance concerns involving FHFA director Bill Pulte and other senior officials. The result, so far at least, was not to address the concerns uncovered but to fire staff in Fannie Mae’s ethics and internal investigations unit.
-
ArticleDOJ dismisses indictment against Cassava advisor amid legal flaws
The DOJ dropped a June 2024 indictment against a Cassava Sciences advisor, closing a case tied to an alleged short-selling scheme and related government probes. The case was criticized for fundamental flaws in evidence and legal procedures.
-
ArticleFormer Capula CCO alleges misconduct and retaliation at the hedge fund firm
The former U.S. chief compliance officer of hedge fund firm Capula Investment Management has blown the whistle against his former employer, alleging he was terminated for raising concerns about improper expensing practices.