ResourcesJanuary 11, 2023Norwegian DPA fines PostNord for lack of risk assessment and proper security measures
Two separate data breaches impacted the PostNord MyPostNord app and were reported to the Norwegian DPA (Datatilsynet) in February and March 2020. The breaches were caused by the fact that unauthorised persons were able to access the profiles of some app users because PostNord, as personal data controller, used phone numbers as the only means...