Azienda Sanitaria Locale Roma

€46,000

Insufficient legal basis for data processing

Otsuse kuupäev

26. mai 2022

Ametiasutus

Italian Data Protection Authority (Garante)

IT

Sektor

Health Care

Riik

IT

Seadus

GDPR

Staatus

FINAL

Kirjeldus

The Italian DPA has fined Azienda Sanitaria Locale Roma EUR 46,000. The healthcare facility had published the names and health information of 1337 patients on its website. In most cases, this involved the health records of the data subjects, including medical documents, disability assessments, tests, technical reports, etc.... In this context, the DPA found that the healthcare institution had processed the data unlawfully as well as violated principle of data minimization.

Õiguslikud viited

Art. 5 (1)Art. 6 (1)Art. 6 (2)Art. 9 (1)Art. 2Art. 2

Probleemid ja rikkumised

Insufficient legal basis for data processing
Vaata ametlikku dokumenti
Tagasi trahvide andmebaasi juurde
Eelmine trahv
Belgian Data Protection Authority (APD) - Roularta...
Järgmine trahv
Data Protection Authority of Hamburg (HmbBfDI) - C...

Privaatsuse jõustamise kohta ajakohastatud teave

Me austame teie privaatsust. Üks e-kiri kuus, ei ole rämpsposti, loobuda tellimusest igal ajal.