Dentist

€1,000

Insufficient legal basis for data processing

Otsuse kuupäev

31. jaanuar 2023

Ametiasutus

Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)

RO

Sektor

Health Care

Riik

IT

Seadus

GDPR

Staatus

FINAL

Kirjeldus

The Romanian DPA has fined a dentist EUR 1,000. The controller had published medical information of a patient, such as photos and X-rays, in an article on a medical blog. However, it had failed to obtain the patient's consent before publishing the medical data. Therefore, the DPA found that the controller had unlawfully processed the data.

Õiguslikud viited

Art. 6 (1)Art. 9 (2)

Probleemid ja rikkumised

Insufficient legal basis for data processing
Vaata ametlikku dokumenti
Tagasi trahvide andmebaasi juurde
Eelmine trahv
Romanian National Supervisory Authority for Person...
Järgmine trahv
Data Protection Authority of Hamburg (HmbBfDI) - C...

Privaatsuse jõustamise kohta ajakohastatud teave

Me austame teie privaatsust. Üks e-kiri kuus, ei ole rämpsposti, loobuda tellimusest igal ajal.