McDonald’s data breach investigated.
The Polish data protection Regulator has announced that it has commenced an investigation into a data breach by McDonald’s, concerning unauthorised access to information about employees. In addition, it also appears that the data breach was not reported within 72 hours of discovery.
Insight
Although details are currently sparse, it appears that the Regulator is focusing on McDonald’s technical and organisational measures and whether the file containing personal data was placed in a publicly available directory.
If your organisation is looking to implement the appropriate technical and organisational measures to satisfy the requirements of the GDPR then take a look at our CSaaS and DPaaS solutions.