| ▲ | smcin an hour ago | |
Yes. The 2018-9 breach and cyberextortion involving Finland's mental-health startup Vastaamo. - CEO Ville Tapio was convicted criminally under the GDPR. - The company failed in 2021. - Finland's NBI tightened criminal code on privacy violations of data subjects, either intentionally or through gross negligence, if they cause damage or significant inconvenience to the data subject. | ||
| ▲ | applfanboysbgon 34 minutes ago | parent | next [-] | |
> The Helsinki Court of Appeal has overturned the criminal conviction of Ville Tapio, the former CEO of psychotherapy provider Vastaamo, in a case linked to one of Finland’s most serious data breaches. The court ruled on Thursday that Tapio was not criminally liable for alleged data protection failures related to the unauthorised access and publication of tens of thousands of patients’ sensitive information. Tapio had previously received a three-month suspended prison sentence from the District Court of Helsinki in spring 2023. No prison time, and the conviction was overturned. Your post rather got my hopes up when it suggested that a CEO faced consequences... | ||
| ▲ | dylan604 an hour ago | parent | prev [-] | |
But now that it has happened once, will they ever do it again? A lot of innocent people lost their jobs because of not fault of their own. I'm putting this in the context of the NCAA punishment given to SMU frequently referred to as the death penalty. The NCAA has since said they would not do that again as there was a lot of unanticipated collateral damage from that punishment decision | ||