Azienda Socio Sanitaria Territoriale Rhodense
€3,000
Insufficient technical and organisational measures to ensure information security
Дата на решението
21 юли 2022 г.
Орган
Italian Data Protection Authority (Garante)
IT
Сектор
Health Care
Държава
IT
Право
GDPRСтатус
FINALОписание
The Italian DPA has fined Azienda Socio Sanitaria Territoriale Rhodense EUR 3,000. The healthcare facility had reported the loss of a patient's medical record. The file contained personal data such as surname, first name, gender, date and place of birth, tax number, place of residence, telephone numbers of the data subject. The DPA determined that the incident was caused by a lack of technical and organizational measures to protect personal data at the healthcare facility.
Правни цитати
Art. 5 (1)Art. 32
Въпроси и нарушения
Insufficient technical and organisational measures to ensure information security