The Netherlands
Arnhem and Nijmegen University of Applied Sciences
175,000 €
GDPR enforcement action by Dutch Supervisory Authority for Data Protection (AP) on 2025-12-15.
Rank · Sector
#34
of 357 in Public Sector and Education
Rank · The Netherlands
#23
of 43
Rank · All fines
#392
of 3,050
Case details
- Authority
- Dutch Supervisory Authority for Data Protection (AP)
- Date
- 2025-12-15
- Controller / Processor
- Arnhem and Nijmegen University of Applied Sciences
- Sector
- Public Sector and Education
- Quoted Articles
- Art. 32 GDPR
- Type of violation
- Insufficient technical and organisational measures to ensure information security
Summary
The Dutch DPA has imposed a fine of EUR 175,000 on Arnhem and Nijmegen University of Applied Sciences. The controller suffered a data breach due to insufficient technical and organisational measures.
Open original source
Links to the regulator's original publication or another source.
Related fines
The Netherlands
2024-07-22
290,000,000 €
ETid-2447
Uber Technologies Inc., Uber B.V.
Employment
The Netherlands
2026-04-01
100,000,000 €
ETid-3171
Ridetech International B.V.
Transportation and Energy
The Netherlands
2024-05-16
30,500,000 €
ETid-2448
Clearview AI Inc.
Industry and Commerce
The Netherlands
2023-12-11
10,000,000 €
ETid-2199
Uber Technologies Inc.
Uber B.V.
Employment
The Netherlands
2024-11-26
4,750,000 €
ETid-2507
Netflix International B.V.
Media, Telecoms and Broadcasting
The Netherlands
2022-04-07
3,700,000 €
ETid-1124
Dutch Tax and Customs Administration
Public Sector and Education