31 Jul French Company Hertz Fined €40,000 for Violating Online Privacy Regulations
France — Hertz, the French car rental company has been ordered to pay €40,000 as penalty for neglecting to secure private information of an estimated 36,000 customers.
Under a new digital republic regulation passed in November 2016, Hertz had committed a kind of data breach that is now punishable by the court.
According to the Commission de l’informatique et des libertés or commission on computing and freedom (CNIL), Hertz could have gotten away with just a warning if the law was not passed.
The company had mistakenly posted customer’s private data in “www.cartereduction-hertz.com,” a domain managed by Hertz France. This included addresses, driver’s license codes, and full names of customers.
The leak is said to have been an error of an outsourced site developer that accidentally deleted a few lines of code, leaving the private information exposed to the public.
Source: The Connexion