France’s data protection regulator, CNIL, has fined the software company Nexpublica €1.7 million ($2 million) for poor cybersecurity practices that led to a data breach. The company’s inadequate data security program violated Europe’s General Data Protection Regulation, with the fine reflecting Nexpublica’s financial capacity, lack of security knowledge, and the sensitivity of the affected data.
Edward Kiledjian
@ekiledjian