Università Campus Bio-medico di Roma (Polyclinic)

€20,000

Non-compliance with general data processing principles

Tanggal Keputusan

26 Oktober 2020

Wewenang

Italian Data Protection Authority (Garante)

IT

Sektor

Public Sector and Education

Negara

IT

Hukum

GDPR

Status

FINAL

Deskripsi

In a data breach notification pursuant to Art. 33 GDPR, the data protection authority found that patients accessing their online medical reports via their smartphones could also access personal health data of 74 other patients. According to the polyclinic, the reason for this was a human error in the integration of two IT systems.

Kutipan Hukum

Art. 5 (2)Art. 9

Masalah & Pelanggaran

Non-compliance with general data processing principles
Lihat Dokumen Resmi
Kembali ke Basis Data Denda
Sebelumnya Denda
Data Protection Authority of Sachsen-Anhalt - Priv...
Berikutnya Baik
Data Protection Authority of Hamburg (HmbBfDI) - C...

Tetap Terupdate tentang Penegakan Privasi

Kami menghormati privasi Anda. Satu email per bulan, tidak ada spam, berhenti berlangganan kapan saja.