Continue reading on DataGuidance with:
Free Member
Limited ArticlesCreate an account to continue accessing select articles, resources, and guidance notes.
Already have an account? Log in
Create an account
Join our community for free to access exclusive whitepapers, reports, and regulatory information.
Estonia: DPI announces genetic testing company database data breach
On December 14, 2023, the Data Protection Inspectorate (DPI) announced that Asper Biogene OÜ, a genetic testing company, had suffered a data breach as a result of a cyber attack. According to the DPI, Asper Biogene informed the police, the DPI, and the Information System Authority (RIA) in mid-November 2023, that someone had illegally entered their database and downloaded various files, which resulted in a criminal investigation by police and a supervisory proceeding by the DPI.
Further to the above, the DPI outlined that approximately 100,000 copies of different files were downloaded from the database, which contains the personal and health information of about 10,000 people, who will be notified personally about the data breach by healthcare providers who had ordered genetic testing from Asper Biogene. The DPI also provided a list of companies providing healthcare or other services affected by the incident, which amounted to 43.
The DPI clarified that the authorities involved are still working to clarify the exact content of the data and the full extent of the leak.
You can read the press release, only available in Estonian, here.
Send us your Feedback!
Please let us know what you think of DataGuidance! It will only take 60 seconds and help us make the site better for you.
