Hospital

€6,900

Insufficient fulfilment of data breach notification obligations

Decision Date

November 26, 2024

Authority

Polish National Personal Data Protection Office (UODO)

PL

Sector

Health Care

Country

DE

Law

GDPR

Status

FINAL

Description

The Polish DPA has fined a district hospital in Września EUR 6,900 for failing to report a data breach to the DPA and data subjects in a timely manner. A patient had accidentally received another individual's medical records and was able to access their personal data.

Legal Citations

Art. 33 (1)Art. 34 (1)

Issues & Violations

Insufficient fulfilment of data breach notification obligations
View Official Document
Back to Fines Database

Stay Updated on Privacy Enforcement

We respect your privacy. One email per month, no spam, unsubscribe anytime.