Casa di Cura Città di Roma
€12,000
Insufficient technical and organisational measures to ensure information security
Ημερομηνία απόφασης
11 Σεπτεμβρίου 2025
Αρχή
Italian Data Protection Authority (Garante)
IT
Τομέας
Health Care
Χώρα
IT
Νόμος
GDPRΚατάσταση
FINALΠεριγραφή
The Italian DPA has imposed a fine of EUR 12,000 on the Casa di Cura Città di Roma. The controller used patient management software that gave users access to excessive amounts of patient data.
Νομικές παραπομπές
Art. 5 (1)Art. 9Art. 25Art. 32
Θέματα & Παραβάσεις
Insufficient technical and organisational measures to ensure information security