Bulgaria's data protection authority, the Commission for Personal Data Protection, issued a BGN 5.1 million fine to the country's National Revenue Agency for violations of the EU General Data Protection Regulation, Economic.bg reports. The CPDP conducted an investigation into the NRA over a data breach that affected 5 million Bulgarian citizens. In addition to the fine, the NRA is required to implement measures to enhance its data protection practices. The agency can appeal the CPDP's decision. The CPDP also issued a BGN 1 million fine to DSK Bank EAD for GDPR violations tied to its own data breach. (Original article is in Bulgarian.)
If you want to comment on this post, you need to login.