Estonia’s Data Protection Inspectorate issued a 3 million euro fine to Allium UPI after it allegedly did not implement adequate data protection standards leading to a data breach impacting more than 750,000 consumers. DPI Director General Pille Lehis said, “if a company’s business model relies on processing customer data, protecting it must be an integral part of the business model. Every company that customers trust with their data has an obligation to protect it and keep it secure.”
Full story