France: Announced CNIL investigation into Viamedis and Almerys regarding appropriate data security measures
Description
Announced CNIL investigation into Viamedis and Almerys regarding appropriate data security measures
On 7 February 2024, the French National Commission on Informatics and Liberty (CNIL) announced it opened an investigation into Viamedis and Almerys. The two companies manage third-party payments for insurance companies and reported a data breach occurring at the end of January. The CNIL now intends to determine whether the companies had appropriate data security measures in place before the incident occurred and if their reaction was in conformity with the General Data Protection Regulation.
Original sourceScope
Policy Area
Data governance
Policy Instrument
Cybersecurity regulation
Regulated Economic Activity
digital payment provider (incl. cryptocurrencies), other service provider
Implementation Level
national
Government Branch
executive
Government Body
data protection authority