Azienda ospedale università di Padova

€75,000

Non-compliance with general data processing principles

Fecha de la decisión

9 de mayo de 2024

Autoridad

Italian Data Protection Authority (Garante)

IT

Sector

Health Care

País

IT

Ley

GDPR

Estado

FINAL

Descripción

The Italian DPA has imposed a fine of EUR 75,000 on Azienda ospedale università di Padova. During its investigation, the DPA found that employees had accessed patient files without authorization and that the controller did not have appropriate access restrictions in place. This allowed employees to access patient files that were not necessary for their work, e.g. because they were not treating the patients in question.

Citas legales

Art. 5 (1)Art. 9Art. 25Art. 32

Problemas e infracciones

Non-compliance with general data processing principles
Ver documento oficial
Volver a la base de datos de multas
Multa anterior
Italian Data Protection Authority (Garante) - Poli...
Siguiente multa
Data Protection Authority of Hamburg (HmbBfDI) - C...

Manténgase al día sobre la aplicación de las normas de protección de la intimidad

Respetamos su intimidad. Un correo electrónico al mes, sin spam, darse de baja en cualquier momento.