University Hospital of the Medical University of Warsaw

€2,120

Insufficient fulfilment of data breach notification obligations

Decision Date

July 6, 2022

Authority

Polish National Personal Data Protection Office (UODO)

PL

Sector

Health Care

Country

PL

Law

GDPR

Status

FINAL

Description

The Polish DPA has imposed a fine of EUR 2,120 on the University Hospital of the Medical University of Warsaw. The university hospital had suffered a data breach in which a patient had received a referral from a doctor that contained, among other things, personal data (name, address, etc.) of another patient. The DPA found that neither the doctor nor the hospital informed the patient or the DPA about the data breach.

Legal Citations

Art. 33Art. 34

Issues & Violations

Insufficient fulfilment of data breach notification obligations
View Official Document
Back to Fines Database
Previous Fine
Polish National Personal Data Protection Office (U...
Next Fine
Data Protection Authority of Hamburg (HmbBfDI) - C...

Stay Updated on Privacy Enforcement

We respect your privacy. One email per month, no spam, unsubscribe anytime.