Ospedaliero-Universitaria Careggi

€80,000

Insufficient technical and organisational measures to ensure information security

Dato for beslutning

4. august 2025

Myndighed

Italian Data Protection Authority (Garante)

IT

Sektor

Health Care

Land

IT

Lovgivning

GDPR

Status

FINAL

Beskrivelse

The Italian DPA has imposed a fine of EUR 80,000 on the Ospedaliero-Universitaria Careggi. The controller, a university hospital, used software that allowed medical personnel to search through the data subject's history, even if this was unrelated to the specific medical treatment.

Juridiske citater

Art. 5 (1)Art. 9Art. 25Art. 32

Problemer og overtrædelser

Insufficient technical and organisational measures to ensure information security
Se officielt dokument
Tilbage til bøde-databasen
Forrige bøde
Information Commissioner (ICO) - Police Officer...
Næste bøde
Data Protection Authority of Hamburg (HmbBfDI) - C...

Hold dig opdateret om håndhævelse af privatlivets fred

Vi respekterer dit privatliv. En e-mail om måneden, ingen spam, afmeld når som helst.